Comment 5 for bug 1928954

Hi, sorry about the delay in replying; we're busy preparing the new release.

Thanks for providing more information about the bug. I compared the configuration you provided with the one I have installed in my test environment, and it seems like they're pretty much the same. At least I don't see anything that might be a problem in your configuration, and I do see the right setting that is necessary to make offline logins work (cache_credentials = True).

I did another test here and created a new user ("samba-tool user create blabla password"), logged in with it, logged out, powered off the AD DC VM, and then tried to log in again. Although the login process takes a bit more time (i.e., a few more seconds) than what is normally expected (due to the DC being offline), it eventually succeeds and I can successfully login using my offline credentials.

I noticed that you have a debug level set to 1 in your sssd.conf file. Could you set it to 6 instead (you can also use the sss_debuglevel tool to do that) and then attach the log files that live inside /var/log/sssd/ to this bug, please? I'm interested in the files that end with ".log" (i.e., I'm not interested in the files named .1, .2.gz, etc.). Also, make sure to promptly try to login using your offline credentials after setting the debug level, because then we have a better chance at catching the problem.

Lastly, I'd like to ask if it's possible for you to create an Ubuntu Impish LXD and configure it as a client in your environment so that you can try to reproduce the problem there.

Thank you in advance.