When {{{ipa-client-install}}} is run, some services get configured and start to work -- for example, {{{id user-from-the-domain}}} will start outputting information about that user.
When {{{ipa-client-install --uninstall}}} is run, I'd expect the system to be returned to the previous state, or more precisely, for changes done by {{{ipa-client-install}}} to be reverted and the services to stop working.
Alas, even after {{{ipa-client-install --uninstall}}} has finished, {{{id user-from-the-domain}}} will still resolve the user, for about five minutes.
It seems memory caches are kept around in {{{/var/lib/sss/mc}}} and the client libraries read them directly.
The uninstall may even consider removing related SSSD caches as they may cause problems on re-install.
Related thread: https://www.redhat.com/archives/freeipa-users/2015-June/msg00116.html
attachment freeipa-rga-0051-Clear-SSSD-caches-when-uninstalling-the-client.patch
master:
ipa-4-1:
Metadata Update from @adelton: - Issue assigned to rga - Issue set to the milestone: FreeIPA 4.1.5
Login to comment on this ticket.