After enabling 'files' domain for fetching sudo-rules from IPA for local users, 'id ipauser' does not show secondary groups
Issue
- After enabling
filesdomain for fetching sudo-rules from IPA for local users as per article How to add sudo rule for local user in IPA server and retrieve on IPA client,'id ipauserdoes not show secondary groups:
# id ipauser
uid=12345(ipauser) gid=12345(ipauser) groups=12345(ipauser)
This issue is not observed with
proxydomain.
- After enabling 'files' domain in sssd.conf on IPA client , secondary groups go missing for IPA users.
Environment
- Red Hat Enterprise Linux 7
- SSSD
- sudo
- Configuration:
id_provider = files
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.
