-
Bug
-
Resolution: Done-Errata
-
Undefined
-
rhel-8.9.0
-
None
-
None
-
rhel-sst-security-compliance
-
ssg_security
-
26
-
None
-
False
-
-
No
-
None
-
-
Pass
-
None
-
-
Unspecified
-
None
Description of problem: [sssd] [sss_ini_add_snippets] (0x0020): Config merge error: File /etc/sssd/conf.d/certificate_verification.conf did not pass access check.
Version-Release number of selected component (if applicable):
ipa-server-4.9.12-2.module+el8.9.0+18921+013c0de2.x86_64
sssd-common-2.9.0-4.el8.x86_64
How reproducible: Always
Steps to Reproduce:
1. Install IPA server in STIG env.
2. Check the dmesg log
Actual results:
Jul 6 07:51:46 master systemd[1]: Starting SSSD Kerberos Cache Manager...
Jul 6 07:51:46 master sssd[20838]: [sssd] [sss_ini_add_snippets] (0x0020): Config merge error: File /etc/sssd/conf.d/certificate_verification.conf did not pass access check. Skipping.
Jul 6 07:51:46 master systemd[1]: Started SSSD Kerberos Cache Manager.
Expected results:
Fix the merge error.
Additional info:
- external trackers
- links to
-
RHBA-2024:128049 scap-security-guide bug fix and enhancement update
- mentioned on