couldn't add active directory domain user to epoptes group

Asked by Md.Tauhidur Rahman

I have a Windows Active Directory integrated Ubuntu 16.04 LTS system with the epoptes server installed. Teachers are logged in this system with AD domain user account. When they try to open the epoptes application, it says access denied. Reason is those domain user accounts are not a member of epoptes group. As a local admin with root privileges, I tried to add those user accounts to epoptes group but failed to do that. In this scenario how is it possible that the teachers can open the epoptes application as a domain user?

Question information

English Edit question
Epoptes Edit question
No assignee Edit question
Last query:
Last reply:
Revision history for this message
Alkis Georgopoulos (alkisg) said :

Hi, create an "epoptes" group in the AD domain, and put the teachers there.
Delete the local epoptes group.

Revision history for this message
Md.Tauhidur Rahman (tauhidbd2007) said :

Thanks for the reply. Is it possible to keep both local and AD domain epoptes group?

Additionally, having any extra step to integrate the AD domain epoptes group with the application or it will just automatically detect that group?

Revision history for this message
Alkis Georgopoulos (alkisg) said :

Hi, the file /run/epoptes/epoptes.socket is owned by the epoptes group.
Files in Linux can't belong in 2 groups, so you can't use both the local and AD groups.
There's no other step involved, it's normal file-permissions based security.

Can you help with this problem?

Provide an answer of your own, or ask Md.Tauhidur Rahman for more information if necessary.

To post a message you must log in.