After enabling 'files' domain for fetching sudo-rules from IPA for local users, 'id ipauser' does not show secondary groups
Issue
- After enabling
files
domain for fetching sudo-rules from IPA for local users as per article How to add sudo rule for local user in IPA server and retrieve on IPA client,'id ipauser
does not show secondary groups:
# id ipauser
uid=12345(ipauser) gid=12345(ipauser) groups=12345(ipauser)
This issue is not observed with
proxy
domain.
- After enabling 'files' domain in sssd.conf on IPA client , secondary groups go missing for IPA users.
Environment
- Red Hat Enterprise Linux 7
- SSSD
- sudo
- Configuration:
id_provider = files
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.