i integrated AD windows 208 R2 with IPA server (centos 6.5)
i write policy for user test execute any command on any host
user test can execute sudo on cetnos 6.5 but on centos 6.6 can not (sudo
get error)
confige sssd.conf

debug_level = 6
cache_credentials = True
krb5_store_password_if_offline = True
ipa_domain = l.example.com
id_provider = ipa
ipa_server = _srv_,ipaserver.l.example.com
dap_tls_cacert = /etc/ipa/ca.crt
sudo_provider = ldap
ldap_uri = ldap://ipasrv.l.example.com <ldap://ipadevel.example.com>
ldap_sudo_search_base = ou=sudoers,dc=l, dc=example,dc=com
ldap_sasl_mech = GSSAPI
ldap_sasl_authid = host/ipadevel.l.example.com
ldap_sasl_realm = L.EXAMPLE.COM
krb5_server = ipadevel.l.example.com

config_file_version = 2
services = nss, pam,ssh,sudo

how to solve this problem
Manage your subscription for the Freeipa-users mailing list:
Go To http://freeipa.org for more info on the project

Reply via email to