Steven Jones wrote:
When I add a host to the hbac rule and not a host group I can login....
Something is wrong with the host group(s).....damned if I can see what.
I'd bump up debugging in sssd (sssd.conf (5)) on the server you're
logging into. It should tell you the evaluation it is making and why it
is failing. You'll need to restart sssd after adding debug_level.
Freeipa-users mailing list