I have successfully joined RHEL7 into Windows AD "TEX". Now I want to allow users from AD "CAL" log into this RHEL7.
"TEX" trusts "CAL" and I have no issues with Windows instances joined "TEX" domain.
krb5.conf - has info about both ADs
resolv.conf - to search CAL ,TEX has info about proper nameservers
nsswitch.conf - pointed to sssd
I can "kinit user1@CAL.COM and "realm discover CAL"
See following error in /var/log/secure:
carrot101 sshd: Invalid user user1@CAL from 188.8.131.52
carrot101 sshd: input_userauth_request: invalid user user1@CAL [preauth]
What could be a problem ?