Cannot Log onto Oracle Linux 7 System Using Active Directory LDAP Credentials.

(Doc ID 2385915.1)

Last updated on APRIL 16, 2018

Applies to:

Linux OS - Version Oracle Linux 7.2 and later
Linux x86-64

Symptoms

Logins on a system running Oracle Linux 7 with Active Directory Authentication fail with the following errors:

/var/log/secure:
Dec 13 14:38:45 localhost sshd[22191]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=x.x.x.x user=username
Dec 13 14:38:45 localhost sshd[22191]: pam_sss(sshd:auth): received for user username: 4 (System error)
Dec 13 14:38:45 localhost sshd[22191]: Failed password for username from x.x.x.x port 40854 ssh2

/var/log/auth.log:
Dec 13 14:38:45 localhost[sssd[krb5_child[22196]]]: Invalid UID in persistent keyring name
Dec 13 14:38:45 localhost [sssd[krb5_child[22196]]]: Invalid UID in persistent keyring name
Dec 13 14:38:45 localhost sshd[22191]: pam_sss(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=x.x.x.x user=username
Dec 13 14:38:45 localhost sshd[22191]: pam_sss(sshd:auth): received for user username 4 (System error)

 

Changes

The system has been configured to use the UEK3 kernel, and the Active Directory server is a Windows 2016 domain controller.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms