hi
i integrated AD windows 208 R2 with IPA server (centos 6.5)
i write policy for user test execute any command on any host
user test can execute sudo on cetnos 6.5 but on centos 6.6 can not (sudo
get error)
confige sssd.conf
=========================

[domain/l.example.com]
debug_level = 6
cache_credentials = True
krb5_store_password_if_offline = True
ipa_domain = l.example.com
id_provider = ipa
ipa_server = _srv_,ipaserver.l.example.com
dap_tls_cacert = /etc/ipa/ca.crt
sudo_provider = ldap
ldap_uri = ldap://ipasrv.l.example.com <ldap://ipadevel.example.com>
ldap_sudo_search_base = ou=sudoers,dc=l, dc=example,dc=com
ldap_sasl_mech = GSSAPI
ldap_sasl_authid = host/ipadevel.l.example.com
ldap_sasl_realm = L.EXAMPLE.COM
krb5_server = ipadevel.l.example.com

 [sssd]
config_file_version = 2
services = nss, pam,ssh,sudo

============================
how to solve this problem
-- 
Manage your subscription for the Freeipa-users mailing list:
https://www.redhat.com/mailman/listinfo/freeipa-users
Go To http://freeipa.org for more info on the project

Reply via email to