<accidently pressed send> On Centos7.2 all patches applied I used the command: ipa-client-install --enable-dns-updates
That configures the client for sudo as well if I'm not mistaken. Rob Verduijn 2016-02-04 16:45 GMT+01:00 Jakub Hrozek <jhro...@redhat.com>: > On Thu, Feb 04, 2016 at 03:52:25PM +0100, Rob Verduijn wrote: >> Hello, >> >> I've noticed that the sudorule-add-runasuser no longer has en --external >> option >> >> What is the current method to add a local service account to a sud >> rule list so that users may run sudo as that service account (ie >> apache or jboss) >> >> Cheers >> Rob Verudijn > > I know I'm not answering your question but how did you configure the > client side earlier? Did you use the native/legacy sudo ldap driver? > > The reason I'm asking this is that sssd only supports users it handles, > so in the IPA case it only supports IPA users anyway.. > > -- > Manage your subscription for the Freeipa-users mailing list: > https://www.redhat.com/mailman/listinfo/freeipa-users > Go to http://freeipa.org for more info on the project -- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project