My Oracle Support Banner

When have multiple groups associated with "simple_allow_groups", authentication for the user fails (Doc ID 2497811.1)

Last updated on JANUARY 29, 2019

Applies to:

Oracle Cloud Infrastructure - Version N/A and later
Linux x86-64 on Oracle Public Cloud

Symptoms

Issue Summary: "simple_allow_users" appears to work with multiple users. ONLY want to restrict by any particular group name let's suppose <AD group>. When have multiple groups associated with "simple_allow_groups", authentication for the user fails.

 

Issue Description:- 

able to login using ssh as AD user on OL 7.5 OCI Provided image and AD user homedir gets created. /etc/sssd/sssd.conf when using EITHER a single user listed in "simple_allow_users" or no user but ONLY the AD group that the user belongs in "simple_allow_groups" parameter.

When add a second group to "simple_allow_groups", user cannot authenticate via SSH.

Changes

 

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!


In this Document
Symptoms
Changes
Cause
Solution


My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.