#5049 After ipa-client-install --uninstall, id admin still shows the user from the domain
Closed: Fixed None Opened 8 years ago by adelton.

When {{{ipa-client-install}}} is run, some services get configured and start to work -- for example, {{{id user-from-the-domain}}} will start outputting information about that user.

When {{{ipa-client-install --uninstall}}} is run, I'd expect the system to be returned to the previous state, or more precisely, for changes done by {{{ipa-client-install}}} to be reverted and the services to stop working.

Alas, even after {{{ipa-client-install --uninstall}}} has finished, {{{id user-from-the-domain}}} will still resolve the user, for about five minutes.

It seems memory caches are kept around in {{{/var/lib/sss/mc}}} and the client libraries read them directly.


The uninstall may even consider removing related SSSD caches as they may cause problems on re-install.

Related thread: https://www.redhat.com/archives/freeipa-users/2015-June/msg00116.html

master:

  • 3772993 Clear SSSD caches when uninstalling the client

ipa-4-1:

  • 222427c Clear SSSD caches when uninstalling the client

Metadata Update from @adelton:
- Issue assigned to rga
- Issue set to the milestone: FreeIPA 4.1.5

7 years ago

Login to comment on this ticket.

Metadata