目录或认证服务
1 前言
一个问题,一篇文章,一出故事。
笔者最近新部署的SFTP需要使用域认证,因此使用到SSSD,最近该服务偶尔意外退出,相见错误如下,
Feb 16 06:07:11 azsftp01 sssd[2420271]: Child [3566589] ('cmdschool.com':'%BE_cmdschool.com') was terminated by own WATCHDOG. Consult corresponding logs
to figure out the reason.
Feb 16 06:07:11 azsftp01 sssd_be[3719968]: Starting up
Feb 16 06:07:35 azsftp01 sssd[2420271]: Child [3566590] ('nss':'nss') was terminated by own WATCHDOG. Consult corresponding logs to figure out the reason.
Feb 16 06:07:35 azsftp01 sssd_nss[3719976]: Starting up
Feb 16 06:07:35 azsftp01 sssd[2420271]: Child [3566591] ('pam':'pam') was terminated by own WATCHDOG. Consult corresponding logs to figure out the reason.
Feb 16 06:07:35 azsftp01 sssd[2420271]: Child [3566592] ('pac':'pac') was terminated by own WATCHDOG. Consult corresponding logs to figure out the reason.
Feb 16 06:07:35 azsftp01 sssd_pam[3719978]: Starting up
Feb 16 06:07:35 azsftp01 sssd_pac[3719979]: Starting up
Feb 16 06:07:42 azsftp01 sssd[2420271]: Child [3719968] ('cmdschool.com':'%BE_cmdschool.com') was terminated by own WATCHDOG. Consult corresponding logs to figure out the reason.
Feb 16 06:07:42 azsftp01 sssd_be[3719980]: Starting up
Feb 16 06:07:44 azsftp01 sssd_nss[3719981]: Starting up
Feb 16 06:07:44 azsftp01 sssd_pam[3719983]: Starting up
Feb 16 06:07:44 azsftp01 sssd_pac[3719982]: Starting up
Feb 16 06:08:13 azsftp01 sssd[2420271]: Child [3719980] ('cmdschool.com':'%BE_cmdschool.com') was terminated by own WATCHDOG. Consult corresponding logs to figure out the reason.
Feb 16 06:08:13 azsftp01 sssd_be[3719989]: Starting up
Feb 16 06:08:17 azsftp01 sssd_nss[3719993]: Starting up
Feb 16 06:08:17 azsftp01 sssd_pam[3719995]: Starting up
Feb 16 06:08:17 azsftp01 sssd_pac[3719994]: Starting up
Feb 16 06:08:44 azsftp01 sssd[2420271]: Child [3719989] ('cmdschool.com':'%BE_cmdschool.com') was terminated by own WATCHDOG. Consult corresponding logs to figure out the reason.
Feb 16 06:08:44 azsftp01 sssd[2420271]: Exiting the SSSD. Could not restart critical service [nss].
Feb 16 06:08:44 azsftp01 sssd_be[3671148]: Shutting down (status = 0)
Feb 16 06:08:44 azsftp01 systemd[1]: sssd.service: Main process exited, code=exited, status=1/FAILURE
Feb 16 06:08:44 azsftp01 systemd[1]: sssd.service: Failed with result 'exit-code'.
Feb 16 06:08:44 azsftp01 systemd[1]: sssd.service: Consumed 12min 53.873s CPU time.
2 最佳实践
2.1 修改配置文件开启域的调试模式
vim /etc/sssd/sssd.conf
开启域的调试模式,如果有多个域则每域都开启,
[domain/cmdschool.org] debug_level = 9 [domain/cmdschool.com] debug_level = 9
2.2 重启服务使配置生效
systemctl restart sssd
2.3 等待下次错误并检查日志
ls /var/log/sssd
没有评论