Im testing a FreeIPA integration. One of the scenarios I'm trying is taking the server offline and making tests with the client, but I am facing an issue. I have logged in on the client with a newly created FreeIPA user, than I stopped the FreeIPA server and SSH-ed again to the client . So far so good.
But I cant find a way to delete the cached FreeIPA user. I tried sss_cache -E
but it does not help. As far as I can tell the account_cache_expiration
setting in /etc/sssd/sssd.conf should delete the cached user after given time but it is 0 (unlimited time) by default
I'm using server with CentOS 7.4/FreeIPA 4.5.0 and client with Linux Mint 18.3/SSSD 1.13.4
PS: This question is about similar issue but remain unanswered sssd and ldap authentication cache