Hi, I'm sorry about the problem you hit, however, I need some more information to diagnose the problem.
First, I wonder if using the AD back end would suit your setup better since you seem to be using AD on the server side. Check out some introduction to the AD provider here: https://jhrozek.livejournal.com/2801.html https://jhrozek.livejournal.com/3019.html But even with the LDAP back end, the secondary groups should be visible, especially since they were visible with the old version. Can you put "debug_level=8" into the [domain] and [nss] section of your sssd.conf, stop the SSSD, remove caches to start from a clean defined state (rm -f /var/lib/sss/db/cache* /var/lib/sss/mc/*), start the SSSD again and run both "id -G user" and then "id user". Would the run with '-G' show the correct groups? Can you attach /var/log/sssd/*.log after the test? -- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1317949 Title: Unable to see secondary groups in `id` listing To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/sssd/+bug/1317949/+subscriptions -- ubuntu-bugs mailing list ubuntu-bugs@lists.ubuntu.com https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
