[Freeipa-users] Sudo rule implementation
Ben .T.George
bentech4you at gmail.com
Tue Dec 20 10:19:15 UTC 2016
Hi List,
please help me to implement sudo rules.
i have did below steps and still not working for me.
1. created "Sudo Command Groups"
2. Added some command (/bin/yum) and included in sudo group
3. created "sudo Rule" on that
* added sudo Option as "!authenticate"
* Added User Group.
* Added one Host
* And under Run command, selected the Sudo Rule Group.
4. entry on nsswitch.conf : sudoers: files sss
5. entry on sssd.conf : services = nss, sudo, pam, ssh
and i tried removing "!authenticate" and changed to Anyone, Any Host and Any
Command,
Also under As Whom to Anyone and Any Group
- I tried logout and login again on client with IPA user which is member of
user group.
When i am running yum, getting error that user is not allowed to execute
command.
Please anyone help to correct my steps.
Regards
Ben
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20161220/eded95af/attachment.htm>
More information about the Freeipa-users
mailing list