Follow-up Comment #4, bug #87887 (project xrootd): I restart xrootd daemons on the remote servers using this sss security line - sec.protocol /usr/lib64 sss -s /var/spool/xrootd/.xrd/sss.keytab.grp I get : so it seams to be working. (will let Wei decide). [root@ascint1y ~]# mount -t fuse -a sec_Client: protocol request for host atlas21.hep.anl.gov token='&P=unix&P=sss,0.13:&P=sss,0.13:' sec_PM: Skipping unix only want sss sec_PM: Loading sss protocol object from libXrdSecsss.so sec_sss: Client keytab='/var/spool/xrootd/.xrd/sss.keytab.grp' sec_PM: Using sss protocol, args='0.13:' sec_sss: Ret 151 bytes of credentials; k=1 sec_sss: Ret 151 bytes of credentials; k=1 sec_Client: protocol request for host atlas22.hep.anl.gov token='&P=unix&P=sss,0.13:' sec_PM: Skipping unix only want sss sec_PM: Loading sss protocol object from libXrdSecsss.so sec_sss: Client keytab='/var/spool/xrootd/.xrd/sss.keytab.grp' sec_PM: Using sss protocol, args='0.13:' sec_sss: Ret 151 bytes of credentials; k=1 sec_sss: Ret 151 bytes of credentials; k=1 [root@ascint1y ~]# df -h /atlas21/atlas _______________________________________________________ Reply to this item at: <http://savannah.cern.ch/bugs/?87887> _______________________________________________ Message sent via/by LCG Savannah http://savannah.cern.ch/