Domain authentication fails if user cannot read /etc/krb5.conf
Issue
- AD user authentication fails with below error
(Mon Mar 25 09:55:04 2019) [[sssd[krb5_child[33183]]]] [create_ccache] (0x0020): 733: [13][Permission denied]
(Mon Mar 25 09:55:04 2019) [[sssd[krb5_child[33183]]]] [map_krb5_error] (0x0020): 1301: [1432158209][Unknown code UUz 1]
(Mon Mar 25 09:55:04 2019) [[sssd[krb5_child[33183]]]] [k5c_send_data] (0x0200): Received error code 1432158209
(Mon Mar 25 09:55:04 2019) [[sssd[krb5_child[33183]]]] [pack_response_packet] (0x2000): response packet size: [20]
(Mon Mar 25 09:55:04 2019) [[sssd[krb5_child[33183]]]] [k5c_send_data] (0x4000): Response sent.
(Mon Mar 25 09:55:04 2019) [[sssd[krb5_child[33183]]]] [main] (0x0400): krb5_child completed successfully
- SSSD's
krb5_child.logshows:
(2024-01-23 12:34:56): [be[example.com]] [krb5_auth_done] (0x3f7c0): [RID#10] The krb5_child process returned an error. Please inspect the krb5_child.log file or the journal for more information
- Error code 1432158209 in krb5_child.log
Environment
- Red Hat Enterprise Linux
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.
