And, is sssd's krb5_validate option overriding krb5 library's verify_ap_req_nofail?
If this flag is true, then an attempt to verify initial credentials will fail if the client machine does not have a keytab. The default value is false. -- You received this bug notification because you are a member of Ubuntu Server, which is subscribed to sssd in Ubuntu. https://bugs.launchpad.net/bugs/1777776 Title: Ubuntu documentation for sssd/kerberos does not authenticate authentication server To manage notifications about this bug go to: https://bugs.launchpad.net/serverguide/+bug/1777776/+subscriptions -- Ubuntu-server-bugs mailing list Ubuntu-server-bugs@lists.ubuntu.com Modify settings or unsubscribe at: https://lists.ubuntu.com/mailman/listinfo/ubuntu-server-bugs
