![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(6.4, 38%, 10%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EVA%3C/text%3E%3C/svg%3E)
7,023 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(313.6, 62%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ESM%3C/text%3E%3C/svg%3E)
Hi @Vishnu Anand , by default, Azure AD authentication on Ubuntu 24.04 uses the SSSD (System Security Services Daemon) service to authenticate users. SSSD is a system daemon that provides access to identity and authentication providers.
When a user logs in using Azure AD authentication, SSSD queries Azure AD to authenticate the user's credentials. If the user has Global Admin permissions, SSSD may not be able to authenticate the user's credentials due to the increased level of permissions.
Try checking the SSSD logs to see if there are any error messages in the var/log/sssd/ directory. If there are error messages related to the user's authentication, you can try modifying the SSSD configuration to exclude Global Admin users Azure AD authentication. To do this, add the following line to the [sssd] section of the /etc/sssd/sssd.conf file: ignore_group_members = Global Admins
Make sure to restart SSSD: sudo systemctl restart sssd.
Please let me know if you have any questions and I can help you further.
If this answer helps you please mark "Accept Answer" so other users can reference it.
Thank you,
James