Here’s the command to check if instance is domain joined.
realm discover domain.com |
To check if AD user is working.
id user@ad.example.com |
To check if AD group is working.
getent group ad-group |
SSSD Leave Domain
Here’s how to unjoin or leave the domain via SSSD.
realm leave domain.com |
SSSD Issues Redhat 7
Some cache to clear.
service sssd stop rm -r /var/lib/sss/db/* rm -r /var/lib/sss/mc/* service sssd start |
Rejoin domain. Run sssd script. Restart sssd.
SSSD on SLES12
A must see for anyone trying to use SSSD on SLES12 systems.
A little bit lengthy, but worth every bit of your half hour.
Restart SSSD Service
Just documenting how to restart SSSD service. SSSD is a service that allows Active Directory groups access to Linux systems.
systemctl restart sssd.service |
For other or older Linux distros, you may have to use this:
service sssd restart |
You can always try the other if one doesn’t work.