Hi,
lately I spent some time with debugging sudo, what I ended up with was:
I created sudo rule in ipa called defaults with sudo option fqdn. defaults
is being checked by sssd as default setting.

I set up NIS domain on hosts same as ipa domain. See getent netgroup
<hostgroup>

sudo seems to work fine.


On Wed, Jun 5, 2013 at 9:45 PM, Dmitri Pal <d...@redhat.com> wrote:

>  On 06/05/2013 11:20 AM, KodaK wrote:
>
> I know this has been discussed before, but I didn't see anything with a
> cursory search.
>
>  There are bugs when using user and host groups with sudo rules.  I have
> to split out my users and hosts into individual entries.  I'm running ipa
> 3.0.0-26 on RHEL.
>
>  All I really want to know is if this is fixed upstream.
>
>
> I am not sure I recall a bug you are referring to. A quick scan against
> the open tickets does not reveal anything like what you describe.
> Can you provide the description of the issue or point to the earlier
> thread on the matter?
>
>  Thanks,
>
>  --Jason
>
>  --
> The government is going to read our mail anyway, might as well make it
> tough for them.  GPG Public key ID:  B6A1A7C6
>
>
> _______________________________________________
> Freeipa-users mailing 
> listFreeipa-users@redhat.comhttps://www.redhat.com/mailman/listinfo/freeipa-users
>
>
>
> --
> Thank you,
> Dmitri Pal
>
> Sr. Engineering Manager for IdM portfolio
> Red Hat Inc.
>
>
> -------------------------------
> Looking to carve out IT costs?www.redhat.com/carveoutcosts/
>
>
> _______________________________________________
> Freeipa-users mailing list
> Freeipa-users@redhat.com
> https://www.redhat.com/mailman/listinfo/freeipa-users
>
_______________________________________________
Freeipa-users mailing list
Freeipa-users@redhat.com
https://www.redhat.com/mailman/listinfo/freeipa-users

Reply via email to