Users are not able to login through SSSD, getting permission denied errors

Solution Verified - Updated -

Issue

  • Permission denied when an IPA user attempts to login to the system.
  • Permission denied when an AD user attempts to login.
(Mon Jan 1 00:00:01 2018) [[sssd[krb5_child[9001]]]] [create_ccache_dir] (0x0010): Check the ownership and permissions of krb5_ccachedir: [/tmp].
  • After configuring a client to authenticate accounts using an IPA server, connections via ssh fail logging the following lines to /var/log/secure:
Mar  5 09:36:23 client sshd[11820]: pam_sss(sshd:auth): received for user username: 4 (System error)
Mar  5 09:36:25 client sshd[11820]: Failed password for username from 127.0.0.1 port 37490 ssh2

Environment

  • Red Hat Enterprise Linux 6
  • Red Hat Enterprise Linux 7
  • IPA (Identity Management)
  • AD (Active Directory)
  • SSSD

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In