ноя 08 09:49:09 test-ba9.vektorint.net systemd[1]: NetworkManager-dispatcher.service: Succeeded.ноя 08 09:49:09 test-ba9.vektorint.net sssd[be[VEKTORINT.NET]][969]: Backend is onlineноя 08 09:49:09 test-ba9.vektorint.net lightdm[1328]: pam_succeed_if(lightdm:auth): requirement "user ingroup nopasswdlogin" not met by user "v001416"ноя 08 09:49:14 test-ba9.vektorint.net lightdm[1328]: pam_sss(lightdm:auth): authentication success; logname= uid=0 euid=0 tty=:0 ruser= rhost= user=v001416ноя 08 09:49:14 test-ba9.vektorint.net lightdm[1328]: gkr-pam: no password is available for userноя 08 09:49:14 test-ba9.vektorint.net sssd[be[VEKTORINT.NET]][969]: Group Policy Container with DN [CN={17E24539-3757-4FA7-9B55-432EF91666FC},CN=Policies,CN=System,DC=vektorint,DC=net] is unreadable or has unreadable or missing attributes. In order to fix this make sure that this AD object has following attributes readable: nTSecurityDescriptor, cn, gPCFileSysPath, gPCMachineExtensionNames, gPCFunctionalityVersion, flags. Alternatively if you do not have access to the server or can not change permissions on this object, you can use option ad_gpo_ignore_unreadable = True which will skip this GPO. See ad_gpo_ignore_unreadable in 'man sssd-ad' for details.ноя 08 09:49:14 test-ba9.vektorint.net lightdm[1328]: pam_sss(lightdm:account): Access denied for user v001416: 4 (System error)ноя 08 09:49:14 test-ba9.vektorint.net lightdm[1342]: pam_succeed_if(lightdm:auth): requirement "user ingroup nopasswdlogin" not met by user "v001416"ноя 08 09:49:18 test-ba9.vektorint.net lightdm[1067]: seat_get_string_property: assertion 'seat != NULL' failed
See ad_gpo_ignore_unreadable in 'man sssd-ad' for details.
man sssd-ad