How to provide privileges to ipa-user to enroll a host in ipa-server

Issue

How do I provide access to user id so that it can enroll a new host in ipa server?
Below privileges have been provided but still it is giving error message of insufficient permission when enrolling a host.

add dns entries
add hosts
add krbprincipalname to a host
add user to default group
add users
change a user password
enroll a host
manage host keytab
manage service keytab
modify group membership
modify hosts
read dns entries
remove dns entries
unlock user accounts
update dns entries
write dns configuration

Environment

Red Hat Enterprise Linux 6
Red Hat Enterprise Linux 7
Red Hat Enterprise Linux 8
Red Hat Enterprise Linux 9
IPA 3
IPA 4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content

Select Your Language

How to provide privileges to ipa-user to enroll a host in ipa-server

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

About

Red Hat legal and privacy links

Red Hat legal and privacy links

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

Systems Status

About

Red Hat legal and privacy links

Red Hat legal and privacy links