SSSD, AD UNIX Attributes, and SSH AllowGroups

So  I recently ran into an issue where we had the following setup:

  • Active Directory Domain
  • Realm joined RHEL 7 Hosts
  • A requirement for UNIX Attributes set in AD
  • sshd_config AllowGroups restrictions

However, the RHEL 7 hosts were not able to display  secondary/supplementary groups in AD when running id and thus, AllowGroups in sshd was failing.

Continue reading “SSSD, AD UNIX Attributes, and SSH AllowGroups”

Break/Fix: Varnish 4 and Apache Vhosts

I spent about an hour scratching my head trying to figure out why my name based vhosts stopped working in Apache 2.4 after I setup Varnish. The answer was quite simple and I will freely admit my embarrassment in case it saves anyone else some time:

Don’t forget to update your vhosts so that this:

<VirtualHost *:80>

Looks like:

<VirtualHost *:8080> <substitute 8080 for whatever port you configured apache to listen on>

You’ll then need to reload your Apache config. Common sense, but it can be often overlooked.