Adjustment to install/share/schema_compat.uldif to correctly assign 
sudorunasuser for both a user and group object respectively.

The bug had to do with the compat plugin syntax needing to correctly identify 
the difference behind intent with the 'runas' attributes.

The difference is handling is:
Sudo allowing someone to run a command as a user, or any user in a _group_.
Sudo allowing someone to run a command as their own user but with a different 
_Group_ or GUID.

This is a very subtle difference that can be frustrating to configure / think 

I have added a patch to address new standard installs and updates.

(This Fix is blocked by

Attachment: binkXtDn1WRLj.bin
Description: freeipa-jraquino-0031-Correct-behavior-for-sudorunasgroup-vs-sudorunasuser.patch

Freeipa-devel mailing list

Reply via email to