Error Adding AD User to linux group? "user doesn't exist"

I setup AD integration, seems to work well when assihing users to SMB shares (esp please with the kerberos auth that ‘just worked’).

I am trying to understand what is possible vs not.

I am trying to add a domain user to this group, and it says that the user does not exist, this is confusing as the user indeed exists.

Is this a bug or expected?

It’s expected behavior. We do not allow manipulating local groups like this.

@awalkerix ok

would be great if either:

  • users that can’t be added are not shown in the picker as they can’t be added
  • the error said something akin to “adding AD users to local linux groups is not supported”

been banging my head against this one for a day trying different combinations.

commit 8872a3a575ea9c1b3ce2e095c162b0c40fb3634b
Author: Andrew Walker <awalker@ixsystems.com>
Date:   Tue Nov 12 14:23:58 2024 -0600

    Add explicit validation errors for mixing DS and local accounts (#14931)

    Users have tried to do this through our APIs on various occasions
    and filed bug tickets. Add more explicit ValidationError.

Already fixed on backed to give more useful error message (as of yesterday). I opened a UI ticket to not present this as an option.

1 Like