On Jan 18, 2012, at 11:47 AM, Erinn Looney-Triggs wrote:

> I can't really figure out what the proper syntax is for the sudo rules
> in IPA. I have a number of options that I would like included by
> default, I have put them in place, from ipa sudorule-show:
> 
> Sudo Option: env_keep = "LESSSECURE", env_reset, mail_badpass,
> mail_no_host, mail_no_perms, syslog = local2

It looks to be getting confused by the whitespace.

Remove the whitespace for env_keep = "LESSSECURE" & syslog = local2 to: 
env_keep="LESSSECURE"
syslog=local2

Let me know if that helps.

Also, can you post a compare against:

ipa sudorule-show defaults

vs

<a host you want to run sudo on> $ sudo -l


> 
> This doesn't appear to work, when sudo is run:
> 
> sudo: unknown defaults entry `env_keep '
> sudo: unknown defaults entry `mail_badpass, mail_no_host, mail_no_perms,
> syslog '
> 
> One thing that jumps out at me is that the '= whatever' portion is not
> being maintained.
> 
> The directions in the IDM guide are less than clear, simply referencing
> the sudoers page for options. These are all valid sudo options, this is
> basically a straight port over from a sudoers file.
> 
> So anyone have any experience doing this bit?
> 
> -Erinn
> 
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users@redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users


_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to