On ma, 24 kesä 2019, Marc Boorshtein via FreeIPA-users wrote:
We added a new account to AD that has a domain trust with FreeIPA.
This
one user is having an issue where IPA can't find him. The user is in the
same OU as other users that work fine. The user is unlocked
(userAccountControl is 512) and the userprincipalname is set. When I try
to add the user to an id view or an external group IPA gives me the error
"trusted domain object not found" . Not really sure where to look next to
figure out what's wrong. We see the user when we make LDAP calls to AD.
'Trusted domain object not found' is about the trust itself. Are you
user you are looking it up against a server that is either trust
controller or trust agent?
If it is a trust agent, does it have ipa-server-trust-ad package
installed?
--
/ Alexander Bokovoy
Sr. Principal Software Engineer
Security / Identity Management Engineering
Red Hat Limited, Finland