[CentOS] Freeipa sssd service

Tue Aug 10 04:35:45 UTC 2021
Anthony K <akcentos at anroet.com>

On 9/8/21 2:42 am, Gokan Atmaca wrote:
>> I started using freeipa. Users I have given "SUDO" right cannot use
>> this right after logging out and logging in. For the solution, I need
>> to restart the "SSSD" service.
>>
>> How can I solve this?
>>

Sounds like you'll need to find a way to invalidate SSSD cache on logout using sss_cache tool:

sss_cache -u <user>

https://www.rootusers.com/how-to-clear-the-sssd-cache-in-linux/