[Freeipa-users] Error message when denied by HBAC

[Sigbjorn Lie]

Hi,

I attempt a login with a user account that's being denied access to the 
host via HBAC, I receive the following generic error message.

Sep  6 20:02:03 ipa01 sshd[11592]: pam_sss(sshd:account): Access denied 
for user username: 4 (System error)


Would it be an idea to change this to advise that the user login was 
denied due to HBAC rules? I see this is a bit confusing.



Regards,
Siggi