sssd-ipa-2.9.8-1.el9 RPM for aarch64

From CentOS Stream 9 BaseOS for aarch64

Provides the IPA back end that the SSSD can utilize to fetch identity data
from and authenticate against an IPA server.

Provides

• sssd-ipa
• libsss_ipa.so()(64bit)
• sssd-ipa(aarch-64)

Requires

• ld-linux-aarch64.so.1()(64bit)
• ld-linux-aarch64.so.1(GLIBC_2.17)(64bit)
• libbasicobjects.so.0()(64bit)
• libc.so.6()(64bit)
• libc.so.6(GLIBC_2.17)(64bit)
• libc.so.6(GLIBC_2.34)(64bit)
• libcollection.so.4()(64bit)
• libcom_err.so.2()(64bit)
• libcrypto.so.3()(64bit)
• libdbus-1.so.3()(64bit)
• libdhash.so.1()(64bit)
• libdhash.so.1(DHASH_0.4.3)(64bit)
• libini_config.so.5()(64bit)
• libipa_hbac(aarch-64) = 2.9.8-1.el9
• libipa_hbac.so.0()(64bit)
• libipa_hbac.so.0(IPA_HBAC_0.0.1)(64bit)
• libipa_hbac.so.0(IPA_HBAC_0.1.0)(64bit)
• libk5crypto.so.3()(64bit)
• libkeyutils.so.1()(64bit)
• libkrb5.so.3()(64bit)
• liblber.so.2()(64bit)
• liblber.so.2(OPENLDAP_2.200)(64bit)
• libldap.so.2()(64bit)
• libldap.so.2(OPENLDAP_2.200)(64bit)
• libldb.so.2()(64bit)
• libldb.so.2(LDB_0.9.10)(64bit)
• libndr-krb5pac.so.0()(64bit)
• libndr-krb5pac.so.0(NDR_KRB5PAC_0.0.1)(64bit)
• libndr-nbt.so.0()(64bit)
• libndr-nbt.so.0(NDR_NBT_0.0.1)(64bit)
• libndr-standard.so.0()(64bit)
• libndr.so.6()(64bit)
• libndr.so.6(NDR_0.0.1)(64bit)
• libpcre2-8.so.0()(64bit)
• libpopt.so.0()(64bit)
• libpopt.so.0(LIBPOPT_0)(64bit)
• libref_array.so.1()(64bit)
• libsamba-util.so.0()(64bit)
• libselinux.so.1()(64bit)
• libselinux.so.1(LIBSELINUX_1.0)(64bit)
• libsemanage.so.2()(64bit)
• libsemanage.so.2(LIBSEMANAGE_1.0)(64bit)
• libsss_cert.so()(64bit)
• libsss_certmap = 2.9.8-1.el9
• libsss_certmap.so.0()(64bit)
• libsss_child.so()(64bit)
• libsss_crypt.so()(64bit)
• libsss_debug.so()(64bit)
• libsss_idmap = 2.9.8-1.el9
• libsss_idmap.so.0()(64bit)
• libsss_idmap.so.0(SSS_IDMAP_0.4)(64bit)
• libsss_krb5_common.so()(64bit)
• libsss_ldap_common.so()(64bit)
• libsss_semanage.so()(64bit)
• libsss_util.so()(64bit)
• libsystemd.so.0()(64bit)
• libtalloc.so.2()(64bit)
• libtalloc.so.2(TALLOC_2.0.2)(64bit)
• libtdb.so.1()(64bit)
• libtevent.so.0()(64bit)
• libtevent.so.0(TEVENT_0.15.0)(64bit)
• libtevent.so.0(TEVENT_0.9.9)(64bit)
• libunistring.so.2()(64bit)
• rpmlib(CompressedFileNames) <= 3.0.4-1
• rpmlib(FileDigests) <= 4.6.0-1
• rpmlib(PayloadFilesHavePrefix) <= 4.0-1
• rpmlib(PayloadIsZstd) <= 5.4.18-1
• rtld(GNU_HASH)
• samba-client-libs >= 4.23.4
• sssd-common = 2.9.8-1.el9
• sssd-common-pac = 2.9.8-1.el9
• sssd-krb5-common = 2.9.8-1.el9

License

GPLv3+

Changelog

* Thu Jan 22 2026 Tomas Halman <thalman@redhat.com> - 2.9.8-1
  - Resolves: RHEL-143692 - SSSD Rebase for RHEL 9.8
  - Resolves: RHEL-133967 - Remove SSSD option ipa_enable_dns_sites
  - Resolves: RHEL-133469 - 'sssd_nss' hangs when looking up an object by ID that has expired cache entry and filtered out by name 
  - Resolves: RHEL-133006 - SSSD: change a default value of 'session_provider' sssd.conf option to 'none'
  - Resolves: RHEL-132984 - sssd_be: segfault at 8 ip 00007f6fd25b2b90 sp 00007ffc02dfbae0 error 4 in libsss_ipa.so
  - Resolves: RHEL-132506 - RFE: package LDAP provider support for subid ranges
  - Resolves: RHEL-120297 - CVE-2025-11561 sssd: SSSD default Kerberos configuration allows privilege escalation on AD-joined Linux
  - Resolves: RHEL-87530 - AD user in external group is not cleared when expiring the cache
* Tue Sep 23 2025 Pavel Filipenský <pfilipen@redhat.com> - 2.9.7-5
  - Related: RHEL-114548 - Rebase Samba to the latest 4.23.x release
* Thu Aug 14 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.9.7-4
  - Related: RHEL-87530 - AD user in external group is not cleared when expiring the cache [rhel-9]
    Patch used to fix this ticket causes a regression (RHEL-106987) and is being reverted.
* Mon Jul 14 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.9.7-3
  - Resolves: RHEL-87530 - AD user in external group is not cleared when expiring the cache [rhel-9]
  - Resolves: RHEL-103434 - cache_credentials = true not working
* Wed Jun 11 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.9.7-2
  - Related: RHEL-89873 - Rebase Samba to the latest 4.22.x release
* Tue May 20 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.9.7-1
  - Resolves: RHEL-92622 - Rebase SSSD for RHEL 9.7
  - Resolves: RHEL-87205 - SSSD fails to connect with ipv4_first when on a machine with only IPv6 and server is dual-stack [rhel-9]
  - Resolves: RHEL-73906 - OAuth2 using UPN attribute from Entra ID
  - Resolves: RHEL-92590 - SSSD LDAPU1 Mapping braces problem [rhel-9]
  - Resolves: RHEL-90136 - backport https://github.com/SSSD/sssd/pull/7649
* Mon Apr 07 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.9.6-4.2
  - Resolves: RHEL-82419 - Disk cache failure with large db sizes [rhel-9]
* Wed Apr 02 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.9.6-4.1
  - Resolves: RHEL-82419 - Disk cache failure with large db sizes [rhel-9]
* Wed Feb 12 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.9.6-4
  - Resolves: RHEL-78253 - 'sssd_kcm' leaks memory [rhel-9]
* Mon Feb 10 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.9.6-3
  - Resolves: RHEL-78253 - 'sssd_kcm' leaks memory [rhel-9]
* Tue Jan 14 2025 Alexey Tikhonov <atikhono@redhat.com> - 2.9.6-2
  - Resolves: RHEL-73400 - Use the DN from existing entry when updating a cached group [rhel-9]
* Thu Dec 05 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.6-1
  - Resolves: RHEL-70189 - Rebase SSSD for RHEL 9.6
  - Resolves: RHEL-67670 - Label DP_OPT_DYNDNS_REFRESH_OFFSET has no corresponding option [rhel-9]
  - Resolves: RHEL-68369 - sssd backend process segfaults when krb5.conf is invalid
  - Resolves: RHEL-66266 - SSSD needs an option to indicate if the LDAP server can run the exop with an anonymous bind or not [rhel-9]
* Mon Oct 21 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.5-5
  - Related: RHEL-59788 - Rebase Samba to the latest 4.21.x release
* Tue Sep 24 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.5-4.1
  - Resolves: RHEL-59876 - EL9/CentOS Stream 9 lost offline smart card authentication
  - Resolves: RHEL-50912 - possible regression of rhbz#2196521
* Thu Jul 18 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.5-4
  - Resolves: RHEL-49711 - SYSDB: remove index on dataExpireTimestamp
  - Resolves: RHEL-49811 - 2FA is being enforced after upgrading 2.9.1->2.9.4
* Mon Jul 08 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.5-3
  - Resolves: RHEL-40742 - passkey_child with wrong owner
* Mon Jun 24 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.5-2
  - Resolves: RHEL-40742 - passkey_child with wrong owner
  - Resolves: RHEL-41047 - sssd is skipping GPO evaluation with auto_private_groups
  - Resolves: RHEL-40570 - GPO access the wrong memory location
* Thu May 16 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.5-1
  - Resolves: RHEL-36586 - Rebase SSSD for RHEL 9.5
  - Resolves: RHEL-27716 - SSSD fails to process AD groups with 'Global Scope' correctly causing incomplete group-membership on RHEL if cache is empty
  - Resolves: RHEL-17659 - [RfE] SSSD Failover Enhancements
  - Resolves: RHEL-35781 - Passkey errors when handling multiple altSecurityIdentities values
  - Resolves: RHEL-30142 - sssd_pac is crashing
  - Resolves: RHEL-22206 - Errors in krb5_child.log every time a user authenticates - Pre-authentication failed: No pkinit_anchors supplied
  - Resolves: RHEL-32595 - Excessive "Domain not found' messages logged to sssd_nss & sssd_be in multidomain AD forest
  - Resolves: RHEL-28666 - sssctl config-check is reporting false positive error msg
  - Resolves: RHEL-29454 - NULL dereference in inotify handling
  - Resolves: RHEL-1654 - Improve documentation for allowing e-mail address as username
* Mon Apr 29 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.4-7
  - Relates: RHEL-33645 - Rebase Samba to the latest 4.20.x release
* Thu Apr 18 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.4-6
  - Resolves: RHEL-27209 - Race condition during authorization leads to GPO policies functioning inconsistently [rhel-9.4.0]
* Mon Mar 25 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.4-5
  - Resolves: RHEL-28161 - Passkey cannot fall back to password
* Thu Mar 21 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.4-4
  - Resolves: RHEL-28161 - Passkey cannot fall back to password
* Wed Mar 13 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.4-3
  - Resolves: RHEL-22340 - socket leak
  - Resolves: RHEL-28161 - Passkey cannot fall back to password
* Mon Feb 12 2024 Alexey Tikhonov <atikhono@redhat.com> - 2.9.4-2
  - Resolves: RHEL-12503 - AD users are unable to log in due to case sensitivity of user because the domain is found as an alias to the email address. 
  - Resolves: RHEL-22288 - ssh pubkey stored in ldap/AD no longer works to authenticate via sssd
  - Resolves: RHEL-22194 - gdm smartcard login fails with sssd-2.9.3 in case of multiple identities

Files

/usr/lib/.build-id
/usr/lib/.build-id/75
/usr/lib/.build-id/75/84b58f0cb1e1694226ee7cc68c55249f158b6c
/usr/lib/.build-id/ce
/usr/lib/.build-id/ce/fda66dcf8e0ba48092b62671e5dd14b9b4c761
/usr/lib64/sssd/libsss_ipa.so
/usr/libexec/sssd/selinux_child
/usr/share/licenses/sssd-ipa
/usr/share/licenses/sssd-ipa/COPYING
/usr/share/man/es/man5/sssd-ipa.5.gz
/usr/share/man/man5/sssd-ipa.5.gz
/usr/share/man/ru/man5/sssd-ipa.5.gz
/usr/share/man/sv/man5/sssd-ipa.5.gz
/usr/share/man/uk/man5/sssd-ipa.5.gz
/var/lib/sss/keytabs

Generated by rpm2html 1.8.1

Fabrice Bellet, Tue Feb 3 03:53:48 2026