SSSD session_recording - exclude_groups not working with AD groups

Solution Verified - Updated -

Issue

  • SSSD session_recording - exclude_groups option is not working with AD groups.

  • /etc/sssd/conf.d/sssd-session-recording.conf is NOT working with exclude_groups option and AD groups e.g.

[session_recording]
scope=all
exclude_groups=adgroup

Users in adgroup are incorrectly being logged by tlog.

Environment

  • Red Hat Enterprise Linux 8.4
  • rhel-system-roles-1.0.1-1.el8.noarch
  • tlog-9-2.el8.x86_64
  • sssd-2.4.0-9.el8.x86_64

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content