SSSD: Failures are logged in sssd_$domain.log file that a group with the same name as user already exists when adding AD user account to the sysdb

Solution Verified - Updated -

Issue

  • SSSD: Failures are logged in sssd_$domain.log file that a group with the same name as user already exists when adding AD user account to the sysdb:
(2022-06-08  8:52:40): [be[ipa.example.com]] [sysdb_add_user] (0x0040): [RID#3] Group named aduser@example.com already exists in an MPG domain  <-----
(2022-06-08  8:52:40): [be[ipa.example.com]] [sysdb_add_user] (0x0400): [RID#3] Error: 17 (File exists)  <-----
  • Erroneous message is logged in /var/log/sssd/sssd_$domain.log file though 'id' lookup & authentication for trusted AD user are working fine.

Environment

  • Red Hat Enterprise Linux 8.5 & later
  • IPA - AD Trust
  • IPA client (sssd-2.6.2-4.el8_6.x86_64 & later)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content