Good day 

I am running FreeIPA, version: 4.1.0 and everything is working well except
SUDO configuration.

I have 3 questions

        1: I have configured the bare minimum sudo configuration without
hostgroups and netgroups , just sudo commands and sudo command groups that
have been added as sudo rules .....this should work right
                2: I have centos 6.6 and redhat 6.6 clients using the sssd
service  ,is that enough for sudo to work if the configs are as below 

cat /etc/nsswitch.conf

sudoers: files sss

cat /etc/sssd/sssd.conf


cache_credentials = True
krb5_store_password_if_offline = True
ipa_domain =
id_provider = ipa
auth_provider = ipa
access_provider = ipa
ipa_hostname =
chpass_provider = ipa
ipa_server = _srv_,
ldap_tls_cacert = /etc/ipa/ca.crt

services = nss, sudo, pam, ssh
config_file_version = 2

domains =
homedir_substring = /home





Manage your subscription for the Freeipa-users mailing list:
Go to for more info on the project

Reply via email to