Gentleman,
i am trying to setup Authentication for my Solaris 11 Server through Active Directory (Server 2012 R2).
At least some things are already working, for example a getent passwd mydomainuser and ldapsearch command comes back with a correct result. So not everything i did was wrong.
But when i try to login via SSH with my domainuser it says every time AccessDenied after i typed in my password.
Anyone knows what i can fix? Some Solutions available?
I have AD working with S10. I struggled a long time with it. Part of it was the pam.conf and the krb5.conf files. I assume you can ssh in as a local user so you've ruled out an sshd misconfiguration. I don't know if the S10 stuff has changed with S11, but if no one has any S11 advice, maybe the S10 setup I have would be a start. One thing that was critical for me was having this entry: verify_ap_req_nofail = false in the libdefaults section of krb5.conf.