Score:0

Ubuntu Denies Active Directory Logon for Single User

es flag

I have an atypical conflict occurring with Ubuntu 18.04 or 20.04 resolving Windows domain credentials. The issue is limited to a single user, but their account works without issue from Windows devices.

Here’s what I’ve learned so far:

  1. The user was able to login to the domain from Ubuntu last week
  2. This week- even with a fresh Ubuntu image- the user is unable to access the AD domain
  3. The account can log in from Windows devices on the domain without issue
  4. The problem appears to be fundamental with Ubuntu SSSD.conf
  5. Multiple Linux support forums suggest that there are a range of issues that occur for SID mapping between Linux GUID and Windows counterparts- I think this explains why the issue might be isolated to the account rather than being system specific.
  6. Other domain accounts work without issue both from the original Ubuntu desktop and a re-imaged Ubuntu laptop
  7. I've attempted allowing FQDN and adjusting LDAP ID variables in SSSD.conf with no success. Auth logs states that the "user is unknown to the underlying authentication module."

I'm more a Windows than Linux guy, so appreciate any recommendations on where to go from here.

mangohost

Post an answer

Most people don’t grasp that asking a lot of questions unlocks learning and improves interpersonal bonding. In Alison’s studies, for example, though people could accurately recall how many questions had been asked in their conversations, they didn’t intuit the link between questions and liking. Across four studies, in which participants were engaged in conversations themselves or read transcripts of others’ conversations, people tended not to realize that question asking would influence—or had influenced—the level of amity between the conversationalists.