Cannot log in with AD users when ad_gpo_access_control is set to enforcing on RHEL7

Solution In Progress - Updated 2018-10-12T06:04:31+00:00 -

Issue

With sssd configured to authenticate users against Active Directory, everything works fine while ad_gpo_access_control is set to permissive. If that setting is changed to enforcing, then domain users cannot log in. The following errors are seen in the log:

Cannot retrieve master domain info
Unable to get som list: [2](No such file or directory)

Environment

RHEL-7.4
sssd-1.15.2-50.el7_4.8.x86_64

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content

Select Your Language

Cannot log in with AD users when ad_gpo_access_control is set to enforcing on RHEL7

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

About

Red Hat legal and privacy links

Red Hat legal and privacy links

Issue

Environment

Subscriber exclusive content

Current Customers and Partners

New to Red Hat?

Using a Red Hat product through a public cloud?

Quick Links

Help

Site Info

Related Sites

Systems Status

About

Red Hat legal and privacy links

Red Hat legal and privacy links