Hi,

Yes I'd missed this,

echo "nisdomainname ods.vuw.ac.nz" >> /etc/rc.d/rc.local

Is it not possible to automate this (sudo setup) more in the ipa-client-install 
?  control whether you want it via a sudo_enable=yes or no somewhere?
 
Ive added it to my kickstart for now so my sudo setup is mostly automated.

Thanks

regards

Steven Jones

Technical Specialist - Linux RHCE

Victoria University, Wellington, NZ

0064 4 463 6272

________________________________________
From: JR Aquino [jr.aqu...@citrix.com]
Sent: Monday, 6 August 2012 5:19 p.m.
To: Steven Jones
Cc: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] hostgroups not working for Sudo commands

On Aug 5, 2012, at 1:54 PM, "Steven Jones" <steven.jo...@vuw.ac.nz> wrote:

> Hi,
>
> I have setup a sudo command but no matter what I do I cannot get a host-group 
> to work, but I can specify a specific host without issue.....I assume this is 
> a problem with the sssd deamon on the RHEL6.3 client?  So what info/logs are 
> needed to fault find this please?
>
>
>

Set sudoers_debug 2 On your sudo-ldap.conf

Run the sudo command. You should see it scroll a list of hostgroups etc.

If you do not have your domainname set, your sudo commands will fail on the 
hostgroup because they expect to see the nis domain match.

> regards
>
> Steven Jones
>
> Technical Specialist - Linux RHCE
>
> Victoria University, Wellington, NZ
>
> 0064 4 463 6272
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users@redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users



_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to