My Oracle Support Banner

Oracle Linux: OL8 sssd(1) Still Retrieves Users and Groups From Local Files Despite /etc/nsswitch.conf Puts sss Before files (Doc ID 2952620.1)

Last updated on JUNE 01, 2023

Applies to:

Linux OS - Version Oracle Linux 8.4 with Unbreakable Enterprise Kernel [5.4.17] and later
Information in this document applies to any platform.
Linux x86-64


When users and/or groups that coexist in both FILES (local files) and AD (Active Directory), sharing the same UIDs or GIDs, Oracle Linux 8 sssd(1) can still retrieve users and groups from FILES instead of AD despite /etc/nsswitch.conf already puts sss before files in the "passwd:" and "group:" directives.

Oracle Linux 7 sssd(1) does not exhibit this behavior and works fine.

Here is an example to illustrate this problem, using only example user and group names.


This problem is triggered when AD administrators create users and groups on the AD server with the same UIDs or GIDs as those in FILES on Oracle Linux clients.


To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!

In this Document

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.