LDAP ticket expired

[francisaugusto]

Hi,

Today I got this error on TrueNAS Scale 22.0.2:

Code:

Attempt to connect to root DSE failed: [EFAULT] {'desc': 'Local error', 'info': 'SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (Ticket expired)'}

I had to open the LDAP configuration and save it again. Won't TrueNAS take care of renewing its tickets?

 

[anodos]

Hi,

Today I got this error on TrueNAS Scale 22.0.2:

Code:

Attempt to connect to root DSE failed: [EFAULT] {'desc': 'Local error', 'info': 'SASL(-1): generic failure: GSSAPI Error: Unspecified GSS failure. Minor code may provide more information (Ticket expired)'}

I had to open the LDAP configuration and save it again. Won't TrueNAS take care of renewing its tickets?

Yes, it should take care of that if LDAP is properly configured.

 

[francisaugusto]

Yes, it should take care of that if LDAP is properly configured.

What would stop it? I mean, it is connected, users are sync'ed, tickets work, etc. What could I check (some background job?) to make sure that it is attempting to renew the ticket?

 

[krbyerdog]

Any answer I've ever seen on this issue from Ix is evasive. At best.

Just had all my NFS shares drop because again, it won't renew the host or nfs service principal ticket. There's nothing wrong with the ldap config or the ldap server, or the nfs share. So short of manually creating new keytabs, and installing them, there's nothing you can do.