[Freeipa-users] HBAC with Active directory group is not working
Alexander Bokovoy
abokovoy at redhat.com
Fri Apr 29 15:03:35 UTC 2016
On Fri, 29 Apr 2016, Ben .T.George wrote:
>Hi List,
>
>I have working setup of one AD, one IPA server and one client server. by
>default i can login to client server by using AD username.
>
>i want to apply HBAC rules against this client server. For that i have done
>below steps.
>
>1. created External group in IPA erver
>2. created local POSIX group n IPA server
>3. Added AD group to external group
>4. added POSIX group to external group.
You should have added external group to POSIX group, not the other way
around.
--
/ Alexander Bokovoy
More information about the Freeipa-users
mailing list