sssd 8 sssd System Security Services Daemon sssd options SSSD provides a set of daemons to manage access to remote directories and authentication mechanisms. It provides an NSS and PAM interface toward the system and a pluggable backend system to connect to multiple different account sources as well as D-Bus interface. It is also the basis to provide client auditing and policy services for projects like FreeIPA. It provides a more robust database to store local users as well as extended user data. -d,--debug-level LEVEL --debug-timestamps=mode 1: Add a timestamp to the debug messages 0: Disable timestamp in the debug messages Default: 1 --debug-microseconds=mode 1: Add microseconds to the timestamp in debug messages 0: Disable microseconds in timestamp Default: 0 --logger=value Location where SSSD will send log messages. stderr: Redirect debug messages to standard error output. files: Redirect debug messages to the log files. By default, the log files are stored in /var/log/sssd and there are separate log files for every SSSD service and domain. journald: Redirect debug messages to systemd-journald Default: not set (fall back to journald if available, otherwise to stderr) -D,--daemon Become a daemon after starting up. -i,--interactive Run in the foreground, don't become a daemon. -c,--config Specify a non-default config file. The default is /etc/sssd/sssd.conf. For reference on the config file syntax and options, consult the sssd.conf 5 manual page. -g,--genconf Do not start the SSSD, but refresh the configuration database from the contents of /etc/sssd/sssd.conf and exit. -s,--genconf-section Similar to --genconf, but only refresh a single section from the configuration file. This option is useful mainly to be called from systemd unit files to allow socket-activated responders to refresh their configuration without requiring the administrator to restart the whole SSSD. --version Print version number and exit. SIGTERM/SIGINT Informs the SSSD to gracefully terminate all of its child processes and then shut down the monitor. SIGHUP Tells the SSSD to stop writing to its current debug file descriptors and to close and reopen them. This is meant to facilitate log rolling with programs like logrotate. SIGUSR1 Tells the SSSD to simulate offline operation for the duration of the offline_timeout parameter. This is useful for testing. The signal can be sent to either the sssd process or any sssd_be process directly. SIGUSR2 Tells the SSSD to go online immediately. This is useful for testing. The signal can be sent to either the sssd process or any sssd_be process directly. If the environment variable SSS_NSS_USE_MEMCACHE is set to "NO", client applications will not use the fast in-memory cache. If the environment variable SSS_LOCKFREE is set to "NO", requests from multiple threads of a single application will be serialized.