Portal:Cloud VPS/Admin/Runbooks/Refresh sssd caches
How to clear sssd caches (hosts, groups, etc).
Overview
If DNS (or an LDAP change) needs a quick update on a Cloud VPS VM that runs sssd, sometimes waiting for the cache to expire is not something you want to do for whatever reason. This applies if the host is not running the nscd or a similar OTHER cache for this kind of information. If you are running nscd, you'll have to clear that instead and/or as well (eg. nscd -i hosts). Anyone operating a Cloud VPS instance with sudo permissions can accomplish this.
Fixing
- Make sure the Debian package
sssd-toolsis installed. If it isn't on this VM, runsudo apt-get install sssd-toolsRequires admin permissions - Run
sudo -i sss_cache -Eto invalidate all caches. Requires admin permissions
That doesn't always work -- in extreme cases you might also need to actively delete the cache files.
# systemctl stop sssd
# rm -rf /var/lib/sss/db/*
# systemctl restart sssd
Support contacts
Communication and support
Support and administration of the WMCS resources is provided by the Wikimedia Foundation Cloud Services team and Wikimedia movement volunteers. Please reach out with questions and join the conversation:
- Chat in real time in the IRC channel #wikimedia-cloud connect, the bridged Telegram group, or the bridged Mattermost channel
- Discuss via email after you have subscribed to the cloud@ mailing list
- Subscribe to the cloud-announce@ mailing list (all messages are also mirrored to the cloud@ list)
- Read the News wiki page
Use a subproject of the #Cloud-Services Phabricator project to track confirmed bug reports and feature requests about the Cloud Services infrastructure itself
Read the Cloud Services Blog (for the broader Wikimedia movement, see the Wikimedia Technical Blog)