ipa: ERROR: invalid 'permission': cannot add permission "System: Read HBAC Rules" with bindtype "all" to a privilege- Normal IPA users cannot view HBAC rules in IPA web UI

Solution Verified - Updated -

Issue

  1. When normal IPA user ipauser logs in the IPA web UI, they cannot see the tab Policy-->Host-Based Access Control.

  2. This error is seen when trying to create a test-privilege (which to be assigned to ipauser later) with permission System: Read HBAC Rules

[root@rhel8-idmserver ~]# ipa privilege-add-permission test-privilege --permissions="System: Read HBAC Rules"
ipa: ERROR: invalid 'permission': cannot add permission "System: Read HBAC Rules" with bindtype "all" to a privilege

Environment

  • Red Hat Enterprise Linux 8.8
  • IPA

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content