After revisiting this, I found the issue was on my side. Our LDAP wasn't returning the members list for groups when queried so polkit wasn't able to authorise those users. I fixed this in our sssd.conf using the 'ignore_group_members = false' option.
-- You received this bug notification because you are a member of Ubuntu Bugs, which is subscribed to Ubuntu. https://bugs.launchpad.net/bugs/1991545 Title: Domain groups not accepted as 'AdminIdentities' To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/policykit-1/+bug/1991545/+subscriptions -- ubuntu-bugs mailing list [email protected] https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
