On Tue, Mar 17, 2015 at 11:37:24AM +0300, Ben .T.George wrote: > HI List > > i was following this link : > http://www.freeipa.org/page/Active_Directory_trust_setup#Assumptions > to setup IPA server > > my IPA version is 4.1.2 > > every setps in this tutorials was passed without any error > > even "*Allow access for users from AD domain to protected resources*" > went successfully > my current issue is only one user called ben can able to login to ipa > server.please check below: > > [root@kwtpocpbis01 ~]# getent passwd b...@infra.com > b...@infra.com:*:531001104:531001104:ben:/home/infra.com/ben: > [root@kwtpocpbis01 ~]# getent passwd bo...@infra.com > [root@kwtpocpbis01 ~]# getent passwd administra...@infra.com > [root@kwtpocpbis01 ~]# > > the users ben & bobby are on same group (Domain users). but bobby cannot > able to login to IPA and not getting any information while querying > please help me to fix this issue. i don't know where i need to troubleshoot > this issue.
Can you increase debug_level in both [nss] and [domain] sections on the server and paste the logs here? -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project