Configure System Security Services Daemon (sssd) to update Active Directory DNS using the custom interval.
By default, the client IP address in the Active Directory DNS is updated every 24 hours using the IP addresses of the interface associated with the connection to the Active Directory LDAP.
Sample debug log.
(2021-09-22 17:46:51): [be[example.org]] [be_ptask_execute] (0x0400): Task [Dyndns update]: executing task, timeout 86400 seconds (2021-09-22 17:46:51): [be[example.org]] [ad_dyndns_update_send] (0x0400): Performing update (2021-09-22 17:46:51): [be[example.org]] [sdap_id_op_connect_step] (0x4000): reusing cached connection (2021-09-22 17:46:51): [be[example.org]] [sdap_id_op_connect_step] (0x4000): reusing cached connection (2021-09-22 17:46:51): [be[example.org]] [check_ipv6_addr] (0x0200): Link local IPv6 address fe80::a00:27ff:fec3:abc9 (2021-09-22 17:46:51): [be[example.org]] [sdap_id_op_destroy] (0x4000): releasing operation connection (2021-09-22 17:46:51): [be[example.org]] [resolv_is_address] (0x4000): [s1.example.org] does not look like an IP address (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying DNS (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_dns_query] (0x0100): Trying to resolve A record of 's1.example.org' in DNS (2021-09-22 17:46:51): [be[example.org]] [schedule_request_timeout] (0x2000): Scheduling a timeout of 3 seconds (2021-09-22 17:46:51): [be[example.org]] [schedule_timeout_watcher] (0x2000): Scheduling DNS timeout watcher (2021-09-22 17:46:51): [be[example.org]] [be_ptask_execute] (0x0400): Task [SUDO Full Refresh]: executing task, timeout 21600 seconds (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_full_refresh_send] (0x0400): Issuing a full refresh of sudo rules (2021-09-22 17:46:51): [be[example.org]] [sdap_id_op_connect_step] (0x4000): reusing cached connection (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_refresh_connect_done] (0x0400): SUDO LDAP connection successful (2021-09-22 17:46:51): [be[example.org]] [check_ipv4_addr] (0x0200): Loopback IPv4 address 127.0.0.1 (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_get_ip_addresses] (0x2000): Found IP address: 10.0.2.15 in network 10.0.2.0/24 (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_get_ip_addresses] (0x2000): Found IP address: 172.16.0.113 in network 172.16.0.0/24 (2021-09-22 17:46:51): [be[example.org]] [check_ipv6_addr] (0x0200): Loopback IPv6 address ::1 (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_get_ip_addresses] (0x2000): Found IP address: fe80::a00:27ff:fe8d:c04d in network fe80::/64 (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_get_ip_addresses] (0x2000): Found IP address: fe80::a00:27ff:fec3:abc9 in network fe80::/64 (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_get_hostnames_send] (0x2000): Found hostname: s1 (2021-09-22 17:46:51): [be[example.org]] [resolv_is_address] (0x4000): [s1] does not look like an IP address (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying files (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_files_send] (0x0100): Trying to resolve A record of 's1' in files (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying files (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_files_send] (0x0100): Trying to resolve AAAA record of 's1' in files (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_next] (0x0200): No more address families to retry (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying DNS (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_dns_query] (0x0100): Trying to resolve A record of 's1' in DNS (2021-09-22 17:46:51): [be[example.org]] [schedule_request_timeout] (0x2000): Scheduling a timeout of 3 seconds (2021-09-22 17:46:51): [be[example.org]] [schedule_timeout_watcher] (0x2000): Scheduling DNS timeout watcher (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_dns_parse] (0x1000): Parsing an A reply (2021-09-22 17:46:51): [be[example.org]] [request_watch_destructor] (0x0400): Deleting request watch (2021-09-22 17:46:51): [be[example.org]] [resolv_is_address] (0x4000): [s1.example.org] does not look like an IP address (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying DNS (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_dns_query] (0x0100): Trying to resolve AAAA record of 's1.example.org' in DNS (2021-09-22 17:46:51): [be[example.org]] [schedule_request_timeout] (0x2000): Scheduling a timeout of 3 seconds (2021-09-22 17:46:51): [be[example.org]] [schedule_timeout_watcher] (0x2000): Scheduling DNS timeout watcher (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_dns_parse] (0x1000): Parsing an A reply (2021-09-22 17:46:51): [be[example.org]] [request_watch_destructor] (0x0400): Deleting request watch (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_get_hostnames_done] (0x2000): Found fqdn: s1.example.org (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_load_sudoers_send] (0x0400): About to fetch sudo rules (2021-09-22 17:46:51): [be[example.org]] [sdap_search_bases_ex_next_base] (0x0400): Issuing LDAP lookup with base [DC=example,DC=org] (2021-09-22 17:46:51): [be[example.org]] [sdap_print_server] (0x2000): Searching 172.16.0.110:389 (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x0400): calling ldap_search_ext with [(&(objectCategory=sudoRole)(|(&(!(sudoHost=*))(cn=defaults))(sudoHost=ALL)(sudoHost=s1)( sudoHost=s1.example.org)(sudoHost=10.0.2.15)(sudoHost=10.0.2.0/24)(sudoHost=172.16.0.113)(sudoHost=172.16.0.0/24)(sudoHost=fe80::a00:27ff:fe8d:c04d)(sudoHost=fe80::/64)(sudoHost=fe80::a00:27ff:fec3 :abc9)(sudoHost=fe80::/64)(sudoHost=+*)))][DC=example,DC=org]. (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [objectClass] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [objectCategory] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [cn] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoCommand] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoHost] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoUser] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoOption] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoRunAs] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoRunAsUser] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoRunAsGroup] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoNotBefore] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoNotAfter] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoOrder] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [uSNChanged] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_step] (0x2000): ldap_search_ext called, msgid = 7 (2021-09-22 17:46:51): [be[example.org]] [sdap_op_add] (0x2000): New operation 7 timeout 6 (2021-09-22 17:46:51): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x55e3d345fb70], connected[1], ops[0x55e3d347bb50], ldap[0x55e3d3457f30] (2021-09-22 17:46:51): [be[example.org]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_REFERENCE] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_add_references] (0x1000): Additional References: ldap://example.org/CN=Configuration,DC=example,DC=org (2021-09-22 17:46:51): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x55e3d345fb70], connected[1], ops[0x55e3d347bb50], ldap[0x55e3d3457f30] (2021-09-22 17:46:51): [be[example.org]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_REFERENCE] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_add_references] (0x1000): Additional References: ldap://example.org/DC=DomainDnsZones,DC=example,DC=org (2021-09-22 17:46:51): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x55e3d345fb70], connected[1], ops[0x55e3d347bb50], ldap[0x55e3d3457f30] (2021-09-22 17:46:51): [be[example.org]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_REFERENCE] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_ext_add_references] (0x1000): Additional References: ldap://example.org/DC=ForestDnsZones,DC=example,DC=org (2021-09-22 17:46:51): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x55e3d345fb70], connected[1], ops[0x55e3d347bb50], ldap[0x55e3d3457f30] (2021-09-22 17:46:51): [be[example.org]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_RESULT] (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_op_finished] (0x0400): Search result: Success(0), no errmsg set (2021-09-22 17:46:51): [be[example.org]] [sdap_get_generic_op_finished] (0x2000): Total count [0] (2021-09-22 17:46:51): [be[example.org]] [sdap_op_destructor] (0x2000): Operation 7 finished (2021-09-22 17:46:51): [be[example.org]] [generic_ext_search_handler] (0x4000): Request included referrals which were ignored. (2021-09-22 17:46:51): [be[example.org]] [generic_ext_search_handler] (0x4000): Ref: ldap://example.org/CN=Configuration,DC=example,DC=org (2021-09-22 17:46:51): [be[example.org]] [generic_ext_search_handler] (0x4000): Ref: ldap://example.org/DC=DomainDnsZones,DC=example,DC=org (2021-09-22 17:46:51): [be[example.org]] [generic_ext_search_handler] (0x4000): Ref: ldap://example.org/DC=ForestDnsZones,DC=example,DC=org (2021-09-22 17:46:51): [be[example.org]] [sdap_search_bases_ex_done] (0x0400): Receiving data from base [DC=example,DC=org] (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_load_sudoers_done] (0x0200): Received 0 sudo rules (2021-09-22 17:46:51): [be[example.org]] [sdap_id_op_done] (0x4000): releasing operation connection (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_refresh_done] (0x0400): Received 0 rules (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 0) (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 1) (2021-09-22 17:46:51): [be[example.org]] [sysdb_sudo_purge_all] (0x0400): Deleting all cached sudo rules (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 2) (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x55e3d3483bd0 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x55e3d348e5f0 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Running timer event 0x55e3d3483bd0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d348e5f0 "ldb_kv_timeout" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d3483bd0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [sysdb_merge_res_ts_attrs] (0x2000): TS cache doesn't handle this DN type, skipping (2021-09-22 17:46:51): [be[example.org]] [sysdb_delete_recursive_with_filter] (0x4000): Found [1] items to delete. (2021-09-22 17:46:51): [be[example.org]] [sysdb_delete_recursive_with_filter] (0x4000): Trying to delete [cn=sudorules,cn=custom,cn=example.org,cn=sysdb]. (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 3) (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x55e3d348e5f0 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x55e3d34903d0 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Running timer event 0x55e3d348e5f0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x55e3d348eb60 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x55e3d348f660 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d34903d0 "ldb_kv_timeout" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d348e5f0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Running timer event 0x55e3d348eb60 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d348f660 "ldb_kv_timeout" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d348eb60 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 3) (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 0) (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x55e3d3483bd0 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x55e3d34904a0 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Running timer event 0x55e3d3483bd0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d34904a0 "ldb_kv_timeout" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d3483bd0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): cancel ldb transaction (nesting: 0) (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 2) (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 1) (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 0) (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_refresh_done] (0x0400): Sudoers is successfully stored in cache (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_set_usn] (0x0200): SUDO higher USN value: [7542] (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x55e3d34904a0 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x55e3d348eb60 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Running timer event 0x55e3d34904a0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d348eb60 "ldb_kv_timeout" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d34904a0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 0) (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x55e3d34904a0 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x55e3d348eb60 (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Running timer event 0x55e3d34904a0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d348eb60 "ldb_kv_timeout" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x55e3d34904a0 "ldb_kv_callback" (2021-09-22 17:46:51): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 0) (2021-09-22 17:46:51): [be[example.org]] [sdap_sudo_full_refresh_done] (0x0400): Successful full refresh of sudo rules (2021-09-22 17:46:51): [be[example.org]] [be_ptask_done] (0x0400): Task [SUDO Full Refresh]: finished successfully (2021-09-22 17:46:51): [be[example.org]] [be_ptask_schedule] (0x0400): Task [SUDO Full Refresh]: scheduling task 21600 seconds from last execution time [1632354411] (2021-09-22 17:46:51): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x55e3d345fb70], connected[1], ops[(nil)], ldap[0x55e3d3457f30] (2021-09-22 17:46:51): [be[example.org]] [sdap_process_result] (0x2000): Trace: end of ldap_result list (2021-09-22 17:46:51): [be[example.org]] [unschedule_timeout_watcher] (0x4000): Unscheduling DNS timeout watcher (2021-09-22 17:46:51): [be[example.org]] [request_watch_destructor] (0x0400): Deleting request watch (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_next] (0x0200): No more address families to retry (2021-09-22 17:46:51): [be[example.org]] [resolv_gethostbyname_next] (0x0100): No more hosts databases to retry (2021-09-22 17:46:51): [be[example.org]] [nsupdate_msg_create_common] (0x0200): Creating update message for auto-discovered realm. (2021-09-22 17:46:51): [be[example.org]] [be_nsupdate_create_fwd_msg] (0x0400): -- Begin nsupdate message -- update delete s1.example.org. in A update add s1.example.org. 3600 in A 172.16.0.113 send update delete s1.example.org. in AAAA send -- End nsupdate message -- (2021-09-22 17:46:51): [be[example.org]] [child_handler_setup] (0x2000): Setting up signal handler up for pid [1741] (2021-09-22 17:46:51): [be[example.org]] [be_nsupdate_args] (0x0200): nsupdate auth type: GSS-TSIG (2021-09-22 17:46:51): [be[example.org]] [child_handler_setup] (0x2000): Signal handler set up for pid [1741] (2021-09-22 17:46:51): [be[example.org]] [write_pipe_handler] (0x0400): All data has been sent! (2021-09-22 17:46:51): [be[example.org]] [nsupdate_child_stdin_done] (0x1000): Sending nsupdate data complete setup_system() reset_system() user_interaction() do_next_command() start_update() done_update() reset_system() user_interaction() do_next_command() evaluate_update() update_addordelete() do_next_command() evaluate_update() update_addordelete() do_next_command() start_update() recvsoa() About to create rcvmsg show_message() Reply from SOA query: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5705 ;; flags: qr aa rd ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;s1.example.org. IN SOA ;; AUTHORITY SECTION: example.org. 3600 IN SOA dc.example.org. hostmaster.example.org. 190 900 600 86400 3600 Found zone name: example.org The master is: dc.example.org start_gssrequest Found realm from ticket: EXAMPLE.ORG send_gssrequest show_message() Out of recvsoa recvgss() recvgss creating rcvmsg show_message() recvmsg reply from GSS-TSIG query ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 30526 ;; flags: qr ra; QUESTION: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; QUESTION SECTION: ;2268527997.sig-dc.example.org. ANY TKEY ;; ANSWER SECTION: 2268527997.sig-dc.example.org. 0 ANY TKEY gss-tsig. 1632332811 1632336411 3 NOERROR 182 oYGzMIGwoAMKAQChCwYJKoZIhvcSAQICooGbBIGYYIGVBgkqhkiG9xIB AgICAG+BhTCBgqADAgEFoQMCAQ+idjB0oAMCAReibQRrl5 AfeiWFP4yo 9Nlh2GpQqjCfCiiDWW58+WpcI87E5TxhkbIualUasz4VcAd8edO4GQ/t HFPhLQ9U1AA2b41ZJM8VFsPfynjx1a4LlJlhyg2DeR3tPWZ20FaOCVDQ fv4v6kF9lp7pIbc7X6s= 0 ;; TSIG PSEUDOSECTION: 2268527997.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632332811 300 28 BAQF//////8AAAAAMRMTFtvjuUmj/qBYLrWZGg== 30526 NOERROR 0 send_update() Sending update to 172.16.0.110#53 show_message() Out of recvgss update_completed() tsig verification successful show_message() Reply from update query: ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 27107 ;; flags: qr; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1 ;; ZONE SECTION: ;example.org. IN SOA ;; TSIG PSEUDOSECTION: 2268527997.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632332811 300 28 BAQF//////8AAAAAMRMTFwuzGF4jiKSdjYp3zQ== 27107 NOERROR 0 done_update() reset_system() user_interaction() do_next_command() evaluate_update() update_addordelete() do_next_command() start_update() recvsoa() About to create rcvmsg show_message() Reply from SOA query: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 20149 ;; flags: qr aa rd ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;s1.example.org. IN SOA ;; AUTHORITY SECTION: example.org. 3600 IN SOA dc.example.org. hostmaster.example.org. 190 900 600 86400 3600 Found zone name: example.org The master is: dc.example.org start_gssrequest send_gssrequest show_message() Out of recvsoa recvgss() recvgss creating rcvmsg show_message() recvmsg reply from GSS-TSIG query ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 1060 ;; flags: qr ra; QUESTION: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; QUESTION SECTION: ;1865657982.sig-dc.example.org. ANY TKEY ;; ANSWER SECTION: 1865657982.sig-dc.example.org. 0 ANY TKEY gss-tsig. 1632332812 1632336412 3 NOERROR 181 oYGyMIGvoAMKAQChCwYJKoZIhvcSAQICooGaBIGXYIGUBgkqhkiG9xIB AgICAG+BhDCBgaADAgEFoQMCAQ+idTBzoAMCAReibARqv7 iNzPSks1i3 VUJAFEpfj3MwEhIUo8U0KTf7XUaHWo5e7FbkJpQ/eS+235NuRpH24Iq/ 50YU5L8f3Tzv25VO5CLAGpCz19zytQxHcta+aoppop6CM3FNvgAkphST zH0k0awawxuWnWGluA== 0 ;; TSIG PSEUDOSECTION: 1865657982.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632332812 300 28 BAQF//////8AAAAAEUxLzjf5GcihS+btyyb2VA== 1060 NOERROR 0 send_update() Sending update to 172.16.0.110#53 show_message() Out of recvgss update_completed() tsig verification successful show_message() Reply from update query: ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 62707 ;; flags: qr; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1 ;; ZONE SECTION: ;example.org. IN SOA ;; TSIG PSEUDOSECTION: 1865657982.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632332812 300 28 BAQF//////8AAAAAEUxLz6Z5xLPRNKDpfI9TeA== 62707 NOERROR 0 done_update() reset_system() user_interaction() do_next_command() start_update() done_update() reset_system() user_interaction() cleanup() Shutting down task manager shutdown_program() Shutting down request manager Destroy DST lib Destroying request manager Freeing the dispatchers Shutting down dispatch manager Destroying event Shutting down socket manager Shutting down timer manager Removing log context Destroying memory context (2021-09-22 17:46:52): [be[example.org]] [child_sig_handler] (0x1000): Waiting for child [1741]. (2021-09-22 17:46:52): [be[example.org]] [child_sig_handler] (0x0100): child [1741] finished successfully. (2021-09-22 17:46:52): [be[example.org]] [be_nsupdate_done] (0x0200): nsupdate child status: 0 (2021-09-22 17:46:52): [be[example.org]] [nsupdate_msg_create_common] (0x0200): Creating update message for auto-discovered realm. (2021-09-22 17:46:52): [be[example.org]] [be_nsupdate_create_ptr_msg] (0x0400): -- Begin nsupdate message -- update delete 113.0.16.172.in-addr.arpa. in PTR update add 113.0.16.172.in-addr.arpa. 3600 in PTR s1.example.org. send -- End nsupdate message -- (2021-09-22 17:46:52): [be[example.org]] [child_handler_setup] (0x2000): Setting up signal handler up for pid [1745] (2021-09-22 17:46:52): [be[example.org]] [child_handler_setup] (0x2000): Signal handler set up for pid [1745] (2021-09-22 17:46:52): [be[example.org]] [write_pipe_handler] (0x0400): All data has been sent! (2021-09-22 17:46:52): [be[example.org]] [nsupdate_child_stdin_done] (0x1000): Sending nsupdate data complete (2021-09-22 17:46:52): [be[example.org]] [be_nsupdate_args] (0x0200): nsupdate auth type: GSS-TSIG setup_system() reset_system() user_interaction() do_next_command() start_update() done_update() reset_system() user_interaction() do_next_command() evaluate_update() update_addordelete() do_next_command() evaluate_update() update_addordelete() do_next_command() start_update() recvsoa() About to create rcvmsg show_message() Reply from SOA query: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57966 ;; flags: qr aa rd ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0 ;; QUESTION SECTION: ;113.0.16.172.in-addr.arpa. IN SOA ;; AUTHORITY SECTION: 0.16.172.in-addr.arpa. 3600 IN SOA dc.example.org. hostmaster.example.org. 4 900 600 86400 3600 Found zone name: 0.16.172.in-addr.arpa The master is: dc.example.org start_gssrequest Found realm from ticket: EXAMPLE.ORG send_gssrequest show_message() Out of recvsoa recvgss() recvgss creating rcvmsg show_message() recvmsg reply from GSS-TSIG query ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 14405 ;; flags: qr ra; QUESTION: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1 ;; QUESTION SECTION: ;258120803.sig-dc.example.org. ANY TKEY ;; ANSWER SECTION: 258120803.sig-dc.example.org. 0 ANY TKEY gss-tsig. 1632332812 1632336412 3 NOERROR 182 oYGzMIGwoAMKAQChCwYJKoZIhvcSAQICooGbBIGYYIGVBgkqhkiG9xIB AgICAG+BhTCBgqADAgEFoQMCAQ+idjB0oAMCAReibQRrUT W46w4y9UTj OKsSPHbHQsPwsTruaIRDtvcqcSLDHzATHbYz8GLFXmaFASnUiKkuAyKG nfuOvUBVj05bS7nR6i07yRHUN1sTCGMyVLFRL2WOdH8kZLmDXZdcZaOo 0ZFQUXL/+fMEWHAVyPY= 0 ;; TSIG PSEUDOSECTION: 258120803.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632332812 300 28 BAQF//////8AAAAAOXrCMkeC2Upwn+9fIwjRfg== 14405 NOERROR 0 send_update() Sending update to 172.16.0.110#53 show_message() Out of recvgss update_completed() tsig verification successful show_message() Reply from update query: ;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 52277 ;; flags: qr; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1 ;; ZONE SECTION: ;0.16.172.in-addr.arpa. IN SOA ;; TSIG PSEUDOSECTION: 258120803.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632332812 300 28 BAQF//////8AAAAAOXrCM45g67lf9XLx7LvdUA== 52277 NOERROR 0 done_update() reset_system() user_interaction() do_next_command() start_update() done_update() reset_system() user_interaction() cleanup() Shutting down task manager shutdown_program() Shutting down request manager Destroy DST lib Destroying request manager Freeing the dispatchers Shutting down dispatch manager Destroying event Shutting down socket manager Shutting down timer manager Removing log context Destroying memory context (2021-09-22 17:46:52): [be[example.org]] [child_sig_handler] (0x1000): Waiting for child [1745]. (2021-09-22 17:46:52): [be[example.org]] [child_sig_handler] (0x0100): child [1745] finished successfully. (2021-09-22 17:46:52): [be[example.org]] [be_nsupdate_done] (0x0200): nsupdate child status: 0 (2021-09-22 17:46:52): [be[example.org]] [sdap_id_op_destroy] (0x4000): releasing operation connection (2021-09-22 17:46:52): [be[example.org]] [be_ptask_done] (0x0400): Task [Dyndns update]: finished successfully (2021-09-22 17:46:52): [be[example.org]] [be_ptask_schedule] (0x0400): Task [Dyndns update]: scheduling task 86400 seconds from last execution time [1632419211]
Update sssd configuration to alter dyndns settings.
$ sudo cat /etc/sssd/sssd.conf
[sssd] domains = example.org config_file_version = 2 services = nss, pam [domain/example.org] default_shell = /bin/bash krb5_store_password_if_offline = True cache_credentials = True krb5_realm = EXAMPLE.ORG realmd_tags = manages-system joined-with-samba id_provider = ad fallback_homedir = /home/%u@%d ad_domain = example.org #ad_hostname = s1.example.org use_fully_qualified_names = True ldap_id_mapping = True access_provider = ad dyndns_update = true # automatically update the Active Directory DNS, default: true dyndns_refresh_interval = 360 # update interval, default: 86400 (24 hours) dyndns_update_ptr = true # update PTR record, default: true dyndns_ttl = 360 # TTL applied to the DNS record, default: 3600 (1 hour) dyndns_iface = eth1 # interface which is used to get an IP address, default: interface used for AD LDAP connection #dyndns_force_tcp = false # force TCP protocol, default: false #dyndns_auth = GSS-TSIG # use secure (GSS-TSIG) or insecure (none) updates, default: GSS-TSIG #dyndns_auth_ptr = GSS-TSIG # use secure (GSS-TSIG) or insecure (none) updates, default: GSS-TSIG #dyndns_server = # fallback address, default: none #dyndns_update_per_family = true # update IPv4 and IPv6 in two steps, default: true
Sample debug log.
(2021-09-22 18:20:01): [be[example.org]] [be_ptask_execute] (0x0400): Task [Dyndns update]: executing task, timeout 360 seconds
(2021-09-22 18:20:01): [be[example.org]] [ad_dyndns_update_send] (0x0400): Performing update
(2021-09-22 18:20:01): [be[example.org]] [sdap_id_op_connect_step] (0x4000): reusing cached connection
(2021-09-22 18:20:01): [be[example.org]] [check_ipv6_addr] (0x0200): Link local IPv6 address fe80::a00:27ff:fec3:abc9
(2021-09-22 18:20:01): [be[example.org]] [resolv_is_address] (0x4000): [s1.example.org] does not look like an IP address
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying DNS
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_dns_query] (0x0100): Trying to resolve A record of 's1.example.org' in DNS
(2021-09-22 18:20:01): [be[example.org]] [schedule_request_timeout] (0x2000): Scheduling a timeout of 3 seconds
(2021-09-22 18:20:01): [be[example.org]] [schedule_timeout_watcher] (0x2000): Scheduling DNS timeout watcher
(2021-09-22 18:20:01): [be[example.org]] [unschedule_timeout_watcher] (0x4000): Unscheduling DNS timeout watcher
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_dns_parse] (0x1000): Parsing an A reply
(2021-09-22 18:20:01): [be[example.org]] [request_watch_destructor] (0x0400): Deleting request watch
(2021-09-22 18:20:01): [be[example.org]] [resolv_is_address] (0x4000): [s1.example.org] does not look like an IP address
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying DNS
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_dns_query] (0x0100): Trying to resolve AAAA record of 's1.example.org' in DNS
(2021-09-22 18:20:01): [be[example.org]] [schedule_request_timeout] (0x2000): Scheduling a timeout of 3 seconds
(2021-09-22 18:20:01): [be[example.org]] [schedule_timeout_watcher] (0x2000): Scheduling DNS timeout watcher
(2021-09-22 18:20:01): [be[example.org]] [unschedule_timeout_watcher] (0x4000): Unscheduling DNS timeout watcher
(2021-09-22 18:20:01): [be[example.org]] [request_watch_destructor] (0x0400): Deleting request watch
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_next] (0x0200): No more address families to retry
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_next] (0x0100): No more hosts databases to retry
(2021-09-22 18:20:01): [be[example.org]] [nsupdate_msg_create_common] (0x0200): Creating update message for auto-discovered realm.
(2021-09-22 18:20:01): [be[example.org]] [be_nsupdate_create_fwd_msg] (0x0400): -- Begin nsupdate message --
update delete s1.example.org. in A
update add s1.example.org. 360 in A 172.16.0.113
send
update delete s1.example.org. in AAAA
send
-- End nsupdate message --
(2021-09-22 18:20:01): [be[example.org]] [child_handler_setup] (0x2000): Setting up signal handler up for pid [1927]
(2021-09-22 18:20:01): [be[example.org]] [child_handler_setup] (0x2000): Signal handler set up for pid [1927]
(2021-09-22 18:20:01): [be[example.org]] [be_nsupdate_args] (0x0200): nsupdate auth type: GSS-TSIG
(2021-09-22 18:20:01): [be[example.org]] [be_ptask_execute] (0x0400): Task [SUDO Full Refresh]: executing task, timeout 21600 seconds
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_full_refresh_send] (0x0400): Issuing a full refresh of sudo rules
(2021-09-22 18:20:01): [be[example.org]] [sdap_id_op_connect_step] (0x4000): reusing cached connection (2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_refresh_connect_done] (0x0400): SUDO LDAP connection successful
(2021-09-22 18:20:01): [be[example.org]] [check_ipv4_addr] (0x0200): Loopback IPv4 address 127.0.0.1
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_get_ip_addresses] (0x2000): Found IP address: 10.0.2.15 in network 10.0.2.0/24
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_get_ip_addresses] (0x2000): Found IP address: 172.16.0.113 in network 172.16.0.0/24
(2021-09-22 18:20:01): [be[example.org]] [check_ipv6_addr] (0x0200): Loopback IPv6 address ::1
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_get_ip_addresses] (0x2000): Found IP address: fe80::a00:27ff:fe8d:c04d in network fe80::/64
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_get_ip_addresses] (0x2000): Found IP address: fe80::a00:27ff:fec3:abc9 in network fe80::/64
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_get_hostnames_send] (0x2000): Found hostname: s1
(2021-09-22 18:20:01): [be[example.org]] [resolv_is_address] (0x4000): [s1] does not look like an IP address
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying files
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_files_send] (0x0100): Trying to resolve A record of 's1' in files
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying files
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_files_send] (0x0100): Trying to resolve AAAA record of 's1' in files
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_next] (0x0200): No more address families to retry
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_step] (0x2000): Querying DNS
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_dns_query] (0x0100): Trying to resolve A record of 's1' in DNS
(2021-09-22 18:20:01): [be[example.org]] [schedule_request_timeout] (0x2000): Scheduling a timeout of 3 seconds
(2021-09-22 18:20:01): [be[example.org]] [schedule_timeout_watcher] (0x2000): Scheduling DNS timeout watcher
(2021-09-22 18:20:01): [be[example.org]] [write_pipe_handler] (0x0400): All data has been sent!
(2021-09-22 18:20:01): [be[example.org]] [nsupdate_child_stdin_done] (0x1000): Sending nsupdate data complete
(2021-09-22 18:20:01): [be[example.org]] [unschedule_timeout_watcher] (0x4000): Unscheduling DNS timeout watcher
(2021-09-22 18:20:01): [be[example.org]] [resolv_gethostbyname_dns_parse] (0x1000): Parsing an A reply
(2021-09-22 18:20:01): [be[example.org]] [request_watch_destructor] (0x0400): Deleting request watch
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_get_hostnames_done] (0x2000): Found fqdn: s1.example.org
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_load_sudoers_send] (0x0400): About to fetch sudo rules
(2021-09-22 18:20:01): [be[example.org]] [sdap_search_bases_ex_next_base] (0x0400): Issuing LDAP lookup with base [DC=example,DC=org]
(2021-09-22 18:20:01): [be[example.org]] [sdap_print_server] (0x2000): Searching 172.16.0.110:389
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x0400): calling ldap_search_ext with [(&(objectCategory=sudoRole)(|(&(!(sudoHost=*))
(cn=defaults))(sudoHost=ALL)(sudoHost=s1)(sudoHost=s1.example.org)(sudoHost=10.0.2.15)(sudoHost=10.0.2.0/24)(sudoHost=172.16.0.113)(sudoHost=172.16.0.0/24)
(sudoHost=fe80::a00:27ff:fe8d:c04d)(sudoHost=fe80::/64)(sudoHost=fe80::a00:27ff:fec3:abc9)(sudoHost=fe80::/64)(sudoHost=+*)))][DC=example,DC=org].
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [objectClass]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [objectCategory]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [cn]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoCommand]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoHost]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoUser]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoOption]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoRunAs]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoRunAsUser]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoRunAsGroup]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoNotBefore]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoNotAfter]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [sudoOrder]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x1000): Requesting attrs: [uSNChanged]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_step] (0x2000): ldap_search_ext called, msgid = 7
(2021-09-22 18:20:01): [be[example.org]] [sdap_op_add] (0x2000): New operation 7 timeout 6
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x556f9e216870], connected[1], ops[0x556f9e2369e0], ldap[0x556f9e20e3e0]
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_REFERENCE]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_add_references] (0x1000): Additional References: ldap://example.org/CN=Configuration,DC=exam
ple,DC=org
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x556f9e216870], connected[1], ops[0x556f9e2369e0], ldap[0x556f9e20e3e0]
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_REFERENCE]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_add_references] (0x1000): Additional References: ldap://example.org/DC=DomainDnsZones,DC=exa
mple,DC=org
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x556f9e216870], connected[1], ops[0x556f9e2369e0], ldap[0x556f9e20e3e0]
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_REFERENCE]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_ext_add_references] (0x1000): Additional References: ldap://example.org/DC=ForestDnsZones,DC=exa
mple,DC=org
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x556f9e216870], connected[1], ops[0x556f9e2369e0], ldap[0x556f9e20e3e0]
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_message] (0x4000): Message type: [LDAP_RES_SEARCH_RESULT]
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_op_finished] (0x0400): Search result: Success(0), no errmsg set
(2021-09-22 18:20:01): [be[example.org]] [sdap_get_generic_op_finished] (0x2000): Total count [0]
(2021-09-22 18:20:01): [be[example.org]] [sdap_op_destructor] (0x2000): Operation 7 finished
(2021-09-22 18:20:01): [be[example.org]] [generic_ext_search_handler] (0x4000): Request included referrals which were ignored.
(2021-09-22 18:20:01): [be[example.org]] [generic_ext_search_handler] (0x4000): Ref: ldap://example.org/CN=Configuration,DC=example,DC=org [308/1936]
(2021-09-22 18:20:01): [be[example.org]] [generic_ext_search_handler] (0x4000): Ref: ldap://example.org/DC=DomainDnsZones,DC=example,DC=org
(2021-09-22 18:20:01): [be[example.org]] [generic_ext_search_handler] (0x4000): Ref: ldap://example.org/DC=ForestDnsZones,DC=example,DC=org
(2021-09-22 18:20:01): [be[example.org]] [sdap_search_bases_ex_done] (0x0400): Receiving data from base [DC=example,DC=org]
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_load_sudoers_done] (0x0200): Received 0 sudo rules
(2021-09-22 18:20:01): [be[example.org]] [sdap_id_op_done] (0x4000): releasing operation connection
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_refresh_done] (0x0400): Received 0 rules
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 0)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 1)
(2021-09-22 18:20:01): [be[example.org]] [sysdb_sudo_purge_all] (0x0400): Deleting all cached sudo rules
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 2)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x556f9e231970
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x556f9e21eb20
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Running timer event 0x556f9e231970 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e21eb20 "ldb_kv_timeout"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e231970 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [sysdb_merge_res_ts_attrs] (0x2000): TS cache doesn't handle this DN type, skipping
(2021-09-22 18:20:01): [be[example.org]] [sysdb_delete_recursive_with_filter] (0x4000): Found [1] items to delete.
(2021-09-22 18:20:01): [be[example.org]] [sysdb_delete_recursive_with_filter] (0x4000): Trying to delete [cn=sudorules,cn=custom,cn=example.org,cn=sysdb].
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 3)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x556f9e21eb20
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x556f9e229dd0
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Running timer event 0x556f9e21eb20 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x556f9e24be80
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x556f9e24c980
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e229dd0 "ldb_kv_timeout"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e21eb20 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Running timer event 0x556f9e24be80 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e24c980 "ldb_kv_timeout"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e24be80 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 3)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 0)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x556f9e231970
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x556f9e24cfe0
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Running timer event 0x556f9e231970 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e24c980 "ldb_kv_timeout"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e24be80 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 3)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 0)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x556f9e231970
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x556f9e24cfe0
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Running timer event 0x556f9e231970 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e24cfe0 "ldb_kv_timeout"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e231970 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): cancel ldb transaction (nesting: 0)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 2)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 1)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 0)
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_refresh_done] (0x0400): Sudoers is successfully stored in cache
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_set_usn] (0x0200): SUDO higher USN value: [7546]
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x556f9e24cfe0
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x556f9e24be80
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Running timer event 0x556f9e24cfe0 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e24be80 "ldb_kv_timeout"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e24cfe0 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): start ldb transaction (nesting: 0)
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_callback": 0x556f9e24cfe0
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Added timed event "ldb_kv_timeout": 0x556f9e24be80
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Running timer event 0x556f9e24cfe0 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e24be80 "ldb_kv_timeout"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): Destroying timer event 0x556f9e24cfe0 "ldb_kv_callback"
(2021-09-22 18:20:01): [be[example.org]] [ldb] (0x10000): commit ldb transaction (nesting: 0)
(2021-09-22 18:20:01): [be[example.org]] [sdap_sudo_full_refresh_done] (0x0400): Successful full refresh of sudo rules
(2021-09-22 18:20:01): [be[example.org]] [be_ptask_done] (0x0400): Task [SUDO Full Refresh]: finished successfully
(2021-09-22 18:20:01): [be[example.org]] [be_ptask_schedule] (0x0400): Task [SUDO Full Refresh]: scheduling task 21600 seconds from last execution time [16
32356401]
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_result] (0x2000): Trace: sh[0x556f9e216870], connected[1], ops[(nil)], ldap[0x556f9e20e3e0]
(2021-09-22 18:20:01): [be[example.org]] [sdap_process_result] (0x2000): Trace: end of ldap_result list
setup_system()
reset_system()
user_interaction()
do_next_command()
start_update()
done_update()
reset_system()
user_interaction()
do_next_command()
evaluate_update()
update_addordelete()
do_next_command()
evaluate_update()
update_addordelete()
do_next_command()
start_update()
recvsoa()
About to create rcvmsg
show_message()
Reply from SOA query:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 17939
;; flags: qr aa rd ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;s1.example.org. IN SOA
;; AUTHORITY SECTION:
example.org. 3600 IN SOA dc.example.org. hostmaster.example.org. 190 900 600 86400 3600
Found zone name: example.org
The master is: dc.example.org
start_gssrequest
Found realm from ticket: EXAMPLE.ORG
send_gssrequest
show_message()
Out of recvsoa
recvgss()
recvgss creating rcvmsg
show_message()
recvmsg reply from GSS-TSIG query
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 3764
;; flags: qr ra; QUESTION: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; QUESTION SECTION:
;3036106902.sig-dc.example.org. ANY TKEY
;; ANSWER SECTION:
3036106902.sig-dc.example.org. 0 ANY TKEY gss-tsig. 1632334801 1632338401 3 NOERROR 182 oYGzMIGwoAMKAQChCwYJKoZIhvcSAQICooGbBIGYYIGVBgkqhkiG9xIB AgIC
AG+BhTCBgqADAgEFoQMCAQ+idjB0oAMCAReibQRrimIIgvWJAIaY SVIgYCwhUskJDnzwHe1nJXpI+ARxAWHV5aFa2mjJsAS/u4PdwMW1nnrn j+XOSRiajQL5tBYxo2Lzsy+qmOL7oCDJAxWZllsvnky6r
2XJlLM6ZU8q 0ZJRVKJFzb3z/TrI92Q= 0
;; TSIG PSEUDOSECTION:
3036106902.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632334801 300 28 BAQF//////8AAAAAPKV0NlQVUNXFcejDeT0fCw== 3764 NOERROR 0
send_update()
Sending update to 172.16.0.110#53
show_message()
Out of recvgss
update_completed()
tsig verification successful
show_message()
Reply from update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 22494
;; flags: qr; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
;; ZONE SECTION:
;example.org. IN SOA
;; TSIG PSEUDOSECTION:
3036106902.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632334801 300 28 BAQF//////8AAAAAPKV0N5sn0CDAmWfN9yMY+w== 22494 NOERROR 0
done_update()
reset_system()
user_interaction()
do_next_command()
evaluate_update()
update_addordelete()
do_next_command()
start_update()
recvsoa()
About to create rcvmsg
show_message()
Reply from SOA query:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 56733
;; flags: qr aa rd ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;s1.example.org. IN SOA
;; AUTHORITY SECTION:
example.org. 3600 IN SOA dc.example.org. hostmaster.example.org. 191 900 600 86400 3600
Found zone name: example.org
The master is: dc.example.org
start_gssrequest
send_gssrequest
show_message()
Out of recvsoa
recvgss()
recvgss creating rcvmsg
show_message()
recvmsg reply from GSS-TSIG query
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15171
;; flags: qr ra; QUESTION: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; QUESTION SECTION:
;1588872371.sig-dc.example.org. ANY TKEY
;; ANSWER SECTION:
1588872371.sig-dc.example.org. 0 ANY TKEY gss-tsig. 1632334801 1632338401 3 NOERROR 182 oYGzMIGwoAMKAQChCwYJKoZIhvcSAQICooGbBIGYYIGVBgkqhkiG9xIB AgIC
AG+BhTCBgqADAgEFoQMCAQ+idjB0oAMCAReibQRr0YRjKC0H+fmV psNdsSMAtTDk2dQE8k5GLNGCunrAFL0Z349CvmZNL4uvhHcKcVBrpyBd gNSKwWP4XGS3FCoVQiHAsAoOqwxEAlQPq+ZdmEq0kP+Qb
y3fzlVr95Jw vx9SW26ZUbKo2Lv/Kdk= 0
;; TSIG PSEUDOSECTION:
1588872371.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632334801 300 28 BAQF//////8AAAAAEKsYxBafJ5CZsqqqyOMcNw== 15171 NOERROR 0
send_update()
Sending update to 172.16.0.110#53
show_message()
Out of recvgss
update_completed()
tsig verification successful
show_message()
Reply from update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 1760
;; flags: qr; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
;; ZONE SECTION:
;example.org. IN SOA
;; TSIG PSEUDOSECTION:
1588872371.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632334801 300 28 BAQF//////8AAAAAEKsYxco8IzeCNABcxj22og== 1760 NOERROR 0
done_update()
reset_system()
user_interaction()
do_next_command()
start_update()
done_update()
reset_system()
user_interaction()
cleanup()
Shutting down task manager
shutdown_program()
Shutting down request manager
Destroy DST lib
Destroying request manager
Freeing the dispatchers
Shutting down dispatch manager
Destroying event
Shutting down socket manager
Shutting down timer manager
Removing log context
Destroying memory context
(2021-09-22 18:20:01): [be[example.org]] [child_sig_handler] (0x1000): Waiting for child [1927].
(2021-09-22 18:20:01): [be[example.org]] [child_sig_handler] (0x0100): child [1927] finished successfully.
(2021-09-22 18:20:01): [be[example.org]] [be_nsupdate_done] (0x0200): nsupdate child status: 0
(2021-09-22 18:20:01): [be[example.org]] [nsupdate_msg_create_common] (0x0200): Creating update message for auto-discovered realm.
(2021-09-22 18:20:01): [be[example.org]] [be_nsupdate_create_ptr_msg] (0x0400): -- Begin nsupdate message --
update delete 113.0.16.172.in-addr.arpa. in PTR
update add 113.0.16.172.in-addr.arpa. 360 in PTR s1.example.org.
send
-- End nsupdate message --
(2021-09-22 18:20:01): [be[example.org]] [child_handler_setup] (0x2000): Setting up signal handler up for pid [1931]
(2021-09-22 18:20:01): [be[example.org]] [child_handler_setup] (0x2000): Signal handler set up for pid [1931]
(2021-09-22 18:20:01): [be[example.org]] [write_pipe_handler] (0x0400): All data has been sent!
(2021-09-22 18:20:01): [be[example.org]] [nsupdate_child_stdin_done] (0x1000): Sending nsupdate data complete
(2021-09-22 18:20:01): [be[example.org]] [be_nsupdate_args] (0x0200): nsupdate auth type: GSS-TSIG
setup_system()
reset_system()
user_interaction()
do_next_command()
start_update()
done_update()
reset_system()
user_interaction()
do_next_command()
evaluate_update()
update_addordelete()
do_next_command()
evaluate_update()
update_addordelete()
do_next_command()
start_update()
recvsoa()
About to create rcvmsg
show_message()
Reply from SOA query:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 57162
;; flags: qr aa rd ra; QUESTION: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;113.0.16.172.in-addr.arpa. IN SOA
;; AUTHORITY SECTION:
0.16.172.in-addr.arpa. 3600 IN SOA dc.example.org. hostmaster.example.org. 4 900 600 86400 3600
Found zone name: 0.16.172.in-addr.arpa
The master is: dc.example.org
start_gssrequest
Found realm from ticket: EXAMPLE.ORG
send_gssrequest
show_message()
Out of recvsoa
recvgss()
recvgss creating rcvmsg
show_message()
recvmsg reply from GSS-TSIG query
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5122
;; flags: qr ra; QUESTION: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; QUESTION SECTION:
;1289950541.sig-dc.example.org. ANY TKEY
;; ANSWER SECTION:
1289950541.sig-dc.example.org. 0 ANY TKEY gss-tsig. 1632334801 1632338401 3 NOERROR 182 oYGzMIGwoAMKAQChCwYJKoZIhvcSAQICooGbBIGYYIGVBgkqhkiG9AG+BhTCBgqADAgEFoQMCAQ+idjB0oAMCAReibQRr7umCahHLdsAg w5IA/hcSdUXvJP+IWAFMH/tXuJfi3mypfavuGd1PP1lYeHbUgBiF8XYp aTXbpQgdEZZd1JnAXL2pViRrcKQ9UeGoJErwf6PPYk/GL
CB4LX1ve4fJ yHD5OGbOyxI0d0HEOsc= 0
;; TSIG PSEUDOSECTION:
1289950541.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632334801 300 28 BAQF//////8AAAAALht9vo9L4H1uKWTVuCuR+Q== 5122 NOERROR 0
send_update()
Sending update to 172.16.0.110#53
show_message()
Out of recvgss
update_completed()
tsig verification successful
show_message()
Reply from update query:
;; ->>HEADER<<- opcode: UPDATE, status: NOERROR, id: 28957
;; flags: qr; ZONE: 1, PREREQ: 0, UPDATE: 0, ADDITIONAL: 1
;; ZONE SECTION:
;0.16.172.in-addr.arpa. IN SOA
;; TSIG PSEUDOSECTION:
1289950541.sig-dc.example.org. 0 ANY TSIG gss-tsig. 1632334801 300 28 BAQF//////8AAAAALht9v+Oall91EEQsG85f8g== 28957 NOERROR 0
done_update()
reset_system()
user_interaction()
do_next_command()
start_update()
done_update()
reset_system()
user_interaction()
cleanup()
Shutting down task manager
shutdown_program()
Shutting down request manager
Destroy DST lib
Destroying request manager
Freeing the dispatchers
Shutting down dispatch manager
Destroying event
Shutting down socket manager
Shutting down timer manager
Removing log context
Destroying memory context
(2021-09-22 18:20:01): [be[example.org]] [child_sig_handler] (0x1000): Waiting for child [1931].
(2021-09-22 18:20:01): [be[example.org]] [child_sig_handler] (0x0100): child [1931] finished successfully.
(2021-09-22 18:20:01): [be[example.org]] [be_nsupdate_done] (0x0200): nsupdate child status: 0
(2021-09-22 18:20:01): [be[example.org]] [sdap_id_op_destroy] (0x4000): releasing operation connection
(2021-09-22 18:20:01): [be[example.org]] [be_ptask_done] (0x0400): Task [Dyndns update]: finished successfully
(2021-09-22 18:20:01): [be[example.org]] [be_ptask_schedule] (0x0400): Task [Dyndns update]: scheduling task 360 seconds from last execution time [1632335161]