Am Fri, Dec 30, 2022 at 11:17:59AM -0000 schrieb Damola Azeez via FreeIPA-users:
After setting up my IPA environment, I am unable to log in
successfully on some of my Linux servers. When I check /var/log/secure for authentication
logs, I see the errors below
Dec 30 12:18:31 e-recondbtest su: pam_sss(su-l:auth): authentication failure;
logname=dazeez uid=1001 euid=0 tty=pts/1 ruser=dazeez rhost= user=daazeez
Dec 30 12:18:31 e-recondbtest su: pam_sss(su-l:auth): received for user daazeez: 6
(Permission denied)
Dec 30 12:18:46 e-recondbtest su: pam_sss(su-l:auth): authentication failure;
logname=dazeez uid=1001 euid=0 tty=pts/1 ruser=dazeez rhost= user=daazeez
Dec 30 12:18:46 e-recondbtest su: pam_sss(su-l:auth): received for user daazeez: 6
(Permission denied)
Hi,
typically you get 'Permission denied' during the authentication step
only if the user is locked on the server. But I guess this is not the
case here. Please check the SSSD logs in /var/log/sssd if you can find
any additional details which might help. If not you can enabled further
debugging output by adding 'debug_level = 9' to the [pam] and
[domain/...] sections in sssd.conf, restart SSSD and try su or sudo
again.
bye,
Sumit
From the root user, I can switch to the user (daazeez) but when I try sudo, inputting
password return authentication failed
Host: oracle linux 7.4
IPA server: IPA, version: 4.9.8
_______________________________________________
FreeIPA-users mailing list -- freeipa-users(a)lists.fedorahosted.org
To unsubscribe send an email to freeipa-users-leave(a)lists.fedorahosted.org
Fedora Code of Conduct:
https://docs.fedoraproject.org/en-US/project/code-of-conduct/
List Guidelines:
https://fedoraproject.org/wiki/Mailing_list_guidelines
List Archives:
https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedoraho...
Do not reply to spam, report it:
https://pagure.io/fedora-infrastructure/new_issue