Am Fri, Dec 30, 2022 at 11:17:59AM -0000 schrieb Damola Azeez via FreeIPA-users: > After setting up my IPA environment, I am unable to log in successfully on > some of my Linux servers. When I check /var/log/secure for authentication > logs, I see the errors below > > Dec 30 12:18:31 e-recondbtest su: pam_sss(su-l:auth): authentication failure; > logname=dazeez uid=1001 euid=0 tty=pts/1 ruser=dazeez rhost= user=daazeez > Dec 30 12:18:31 e-recondbtest su: pam_sss(su-l:auth): received for user > daazeez: 6 (Permission denied) > Dec 30 12:18:46 e-recondbtest su: pam_sss(su-l:auth): authentication failure; > logname=dazeez uid=1001 euid=0 tty=pts/1 ruser=dazeez rhost= user=daazeez > Dec 30 12:18:46 e-recondbtest su: pam_sss(su-l:auth): received for user > daazeez: 6 (Permission denied)
Hi, typically you get 'Permission denied' during the authentication step only if the user is locked on the server. But I guess this is not the case here. Please check the SSSD logs in /var/log/sssd if you can find any additional details which might help. If not you can enabled further debugging output by adding 'debug_level = 9' to the [pam] and [domain/...] sections in sssd.conf, restart SSSD and try su or sudo again. bye, Sumit > > > From the root user, I can switch to the user (daazeez) but when I try sudo, > inputting password return authentication failed > > > > > Host: oracle linux 7.4 > IPA server: IPA, version: 4.9.8 > _______________________________________________ > FreeIPA-users mailing list -- [email protected] > To unsubscribe send an email to [email protected] > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/[email protected] > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue _______________________________________________ FreeIPA-users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/[email protected] Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
