Using Rocky Linux 10, I am doing an ssh localhost and get a broadcast message about sssd_kcm.log permission errors. First it was a file not found, so I created the directory. Now it is permission denied. Searching around I saw some ideas about selinux permissions, so I tried:
# restorecon /var/log/sssd
# ls -Zd /var/log/sssd/
unconfined_u:object_r:sssd_var_log_t:s0 /var/log/sssd/
But it’s still the same error. The logs look like:
Jun 26 09:17:35 rocky sssd_kcm[2479]: Could not open file [/var/log/sssd/sssd_kcm.log]. Error: [13][Permission denied]
Jun 26 09:17:35 rocky sssd_kcm[2479]: Error opening log file, falling back to stderr
Jun 26 09:17:35 rocky sssd_kcm[2479]: (2025-06-26 9:17:35): [kcm] [server_setup] (0x3f7c0): Starting with debug level = 0x0070
Jun 26 09:17:35 rocky sssd_kcm[2479]: Starting up
Jun 26 09:17:35 rocky sssd_kcm[2479]: (2025-06-26 9:17:35): [kcm] [activate_unix_sockets] (0x3f7c0): Warning: socket path defined in systemd unit (/run/.heim_org.h5l.kcm-socket) and sssd.conf (/var/run/.heim_org.h5l.kcm-socket) don't match
Jun 26 09:17:35 rocky sssd_kcm[2479]: (2025-06-26 9:17:35): [kcm] [server_loop] (0x3f7c0): Entering main loop under uid=998 (euid=998) : gid=998 (egid=998) with SECBIT_KEEP_CAPS = 0 and following capabilities:
Jun 26 09:17:35 rocky sssd_kcm[2479]: (nothing)
Jun 26 09:17:35 rocky sshd-session[2462]: Accepted publickey for