Hi,

can you provide more details? Did you use the "Default Trust View" idview or did you create another one? Which attributes did you override for your AD user?

flo

On Thu, May 11, 2023 at 11:02 AM Ronald Wimmer via FreeIPA-users <freeipa-users@lists.fedorahosted.org> wrote:
I tried to apply an ID-View to a single AD-User. The first thing I
noticed that the short user name did not work anymore upon SSH login. I
had to specifiy the user name with its FQDN.

The second problem I noticed is that under RHEL 9 that particular user
somehow "lost" all its groups. The only group the id command revealed
was the one with the user's UID. So group-based sudo permissions stopped
working...

Cheers,
Ronald
_______________________________________________
FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave@lists.fedorahosted.org
Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org
Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue