Hello, I would like to configure XRDP to work with IPA (Identity, Policy, and Audit) users. I’m looking for assistance in setting up XRDP so that IPA users can successfully connect to remote desktop sessions. Any guidance or instructions on how to achieve this would be greatly appreciated. Thank you!
If you have the allow_all policy disabled in FreeIPA, you just need to create an hbac service:
xrdp-sesman - and then you create a policy that allows that HBAC service for the user/group and host/hostgroup.
Thanks to you, I managed to get it working after hours of searching, and that’s exactly how you described it. Still, thank you for this response, I hope it will help our other friends."