Hi, I’ve configured sssd to use session recording along with tlog but it’s not working.
I don’t use any domain for authentication, all users are local
This my configuration files:
/etc/sssd/sssd.conf
[sssd]
domains = files
services = pam, sudo, nss, ssh
[domain/files]
id_provider = files
Is the above configuration correct?
And /etc/sssd/conf.d/sssd-session-recording.conf :
[session_recording]
scope=all
exclude_users=
exclude_groups=
I don’t find ny errors:
[root@munster ~]# sssctl config-check
Issues identified by validators: 0
Messages generated during configuration merging: 0
Used configuration snippet files: 1
/etc/sssd/conf.d/sssd-session-recording.conf
[root@munster ~]# systemctl status sssd
● sssd.service - System Security Services Daemon
Loaded: loaded (/usr/lib/systemd/system/sssd.service; enabled; vendor preset: enabled)
Active: active (running) since Wed 2022-07-13 23:40:25 -03; 9h ago
Main PID: 971 (sssd)
Tasks: 6 (limit: 38124)
Memory: 55.9M
CPU: 2.409s
CGroup: /system.slice/sssd.service
├─ 971 /usr/sbin/sssd -i --logger=files
├─ 1030 /usr/libexec/sssd/sssd_be --domain files --uid 0 --gid 0 --logger=files
├─ 1035 /usr/libexec/sssd/sssd_pam --uid 0 --gid 0 --logger=files
├─ 1036 /usr/libexec/sssd/sssd_sudo --uid 0 --gid 0 --logger=files
├─ 1037 /usr/libexec/sssd/sssd_nss --uid 0 --gid 0 --logger=files
└─ 1038 /usr/libexec/sssd/sssd_ssh --uid 0 --gid 0 --logger=files
jul 13 23:40:24 munster.belkin.home systemd[1]: Starting sssd.service - System Security Services Daemon...
jul 13 23:40:24 munster.belkin.home sssd[971]: Starting up
jul 13 23:40:24 munster.belkin.home sssd_be[1030]: Starting up
jul 13 23:40:24 munster.belkin.home sssd_ssh[1038]: Starting up
jul 13 23:40:24 munster.belkin.home sssd_pam[1035]: Starting up
jul 13 23:40:24 munster.belkin.home sssd_sudo[1036]: Starting up
jul 13 23:40:24 munster.belkin.home sssd_nss[1037]: Starting up
jul 13 23:40:25 munster.belkin.home systemd[1]: Started sssd.service - System Security Services Daemon.
jul 13 23:40:41 munster.belkin.home sssd_nss[1037]: Enumeration requested but not enabled
But recording sessions does not work.
This my packages:
sssd-2.7.3-1.fc36.x86_64
tlog-12-2.fc36.x86_64
fedora-release-common-36-17.noarch
Please could you help me to figure it out why session recording is not working?
Thanks in advance!