On Fri, Jun 14, 2013 at 01:36:16PM +0100, James Hogarth wrote:
> > Is this in RHEL based systems only ? On Ubuntu there seems to be still
> > issues.
> >
> > A full printout of the config file(s) would be nice to see as most people
> > write other things down they have working, but the working ones
> Is this in RHEL based systems only ? On Ubuntu there seems to be still
> issues.
>
> A full printout of the config file(s) would be nice to see as most people
> write other things down they have working, but the working ones don't write
> their full config down.
>
>
All my systems are CentOS 6.4
James,
Is this in RHEL based systems only ? On Ubuntu there seems to be still
issues.
A full printout of the config file(s) would be nice to see as most people
write other things down they have working, but the working ones don't write
their full config down.
Thanks.
Cheers,
Matt
2013/6/14 J
> I believe that at one point we included a configuration very similar to
> the snippet above in man sssd-sudo. It should be there in 6.4, not 100%
> sure now.
>
Just checked the man page and indeed that minimal snippet is there ...
I really need to spend more time going through new man pages etc
On Fri, Jun 14, 2013 at 12:12:14PM +0100, James Hogarth wrote:
> > Also if you're using service DNS records, you can either leave the URIs
> > blank and default to service resolution or explicitly use service
> > resolution along with a hardcoded name:
> >
> > ldap_uri = _srv_, ldap://ldap.example.
> Also if you're using service DNS records, you can either leave the URIs
> blank and default to service resolution or explicitly use service
> resolution along with a hardcoded name:
>
> ldap_uri = _srv_, ldap://ldap.example.com
>
>
>
Hi Jakub,
Thanks for this. I've been doing the ldap backed sud
Thanks a lot. I followed Alex's advice and it's all good now.
Very much appreciated!
On Jun 13, 2013 9:33 AM, "Jakub Hrozek" wrote:
> On Thu, Jun 13, 2013 at 01:26:54AM +0300, Alexander Bokovoy wrote:
> > On Wed, 12 Jun 2013, Sina Owolabi wrote:
> > >Thank you for the reply Alex, though I'm a lit
On 06/12/2013 02:51 PM, Pavel Březina wrote:
On 06/12/2013 02:37 PM, Jakub Hrozek wrote:
On Wed, Jun 12, 2013 at 11:22:35AM +0200, Matt . wrote:
Hi,
The package as you described is installed, the configlines are set as
you
show it.
This is what I see in auth.log, my sssd_sudo does not show a
On Thu, Jun 13, 2013 at 01:26:54AM +0300, Alexander Bokovoy wrote:
> On Wed, 12 Jun 2013, Sina Owolabi wrote:
> >Thank you for the reply Alex, though I'm a little confused that I am
> >answering the correct email.
> >I have taken a look at the example sssd.conf you advised, and I'm a little
> >curi
On Wed, 12 Jun 2013, Sina Owolabi wrote:
Thank you for the reply Alex, though I'm a little confused that I am
answering the correct email.
I have taken a look at the example sssd.conf you advised, and I'm a little
curious if the configuration supports having multiple IPA servers? I have a
multi-m
I rebooted one of the servers and it worked!
Thanks a lot
On Wed, Jun 12, 2013 at 6:29 PM, Sina Owolabi wrote:
> Thank you for the reply Alex, though I'm a little confused that I am
> answering the correct email.
> I have taken a look at the example sssd.conf you advised, and I'm a little
> curi
Thank you for the reply Alex, though I'm a little confused that I am
answering the correct email.
I have taken a look at the example sssd.conf you advised, and I'm a little
curious if the configuration supports having multiple IPA servers? I have a
multi-master setup with two servers. I tried to ad
On Wed, Jun 12, 2013 at 1:56 AM, Sina Owolabi wrote:
> Hi
> Please help me understand what I am doing wrong:
>
> Im using two RHEL6.4 ipa servers in a multi-master configuration
> Instead of creating multiple sudocmdgroups and sudo rules, I tried to subset
> what I could see in the /etc/sudoers fi
On 06/12/2013 02:37 PM, Jakub Hrozek wrote:
On Wed, Jun 12, 2013 at 11:22:35AM +0200, Matt . wrote:
Hi,
The package as you described is installed, the configlines are set as you
show it.
This is what I see in auth.log, my sssd_sudo does not show a thing:
Jun 12 11:19:16 server sudo: pam_unix(
On Wed, Jun 12, 2013 at 11:22:35AM +0200, Matt . wrote:
> Hi,
>
> The package as you described is installed, the configlines are set as you
> show it.
>
> This is what I see in auth.log, my sssd_sudo does not show a thing:
>
> Jun 12 11:19:16 server sudo: pam_unix(sudo:auth): authentication fail
Hi,
The package as you described is installed, the configlines are set as you
show it.
This is what I see in auth.log, my sssd_sudo does not show a thing:
Jun 12 11:19:16 server sudo: pam_unix(sudo:auth): authentication failure;
logname=USERNAME uid=86666 euid=0 tty=/dev/pts/0 ruser=USERNAME
On Wed, 12 Jun 2013, Matt . wrote:
Hi,
A lot of people seem to have problem with Sudo and FreeIPA.
How to enable sudo is described here:
http://www.freeipa.org/images/7/77/Freeipa30_SSSD_SUDO_Integration.pdf
The problem we are facing, also discussed on IRC is that there is looked in
the local
Thank you so very much for the replies. What I did actually worked, but not
on two of the servers I was testing with. (adding command groups to a
sudorule). It worked so well that I did it twice again :-)
What I'm curious about is the two servers that still ask for sudo password.
One of them brings
Hi,
A lot of people seem to have problem with Sudo and FreeIPA.
How to enable sudo is described here:
http://www.freeipa.org/images/7/77/Freeipa30_SSSD_SUDO_Integration.pdf
The problem we are facing, also discussed on IRC is that there is looked in
the local sudoers file of the client if the lo
Sina Owolabi wrote:
Hi
Please help me understand what I am doing wrong:
Im using two RHEL6.4 ipa servers in a multi-master configuration
Instead of creating multiple sudocmdgroups and sudo rules, I tried to
subset what I could see in the /etc/sudoers files and have nested
command groups and rule
of Sina Owolabi [shinacaly...@gmail.com]
Sent: Wednesday, 12 June 2013 11:56 a.m.
To: freeipa-users@redhat.com
Subject: [Freeipa-users] Sudo Commands and groups confusion
Hi
Please help me understand what I am doing wrong:
Im using two RHEL6.4 ipa servers in a multi-master configuration
Instead
Hi
Please help me understand what I am doing wrong:
Im using two RHEL6.4 ipa servers in a multi-master configuration
Instead of creating multiple sudocmdgroups and sudo rules, I tried to
subset what I could see in the /etc/sudoers files and have nested command
groups and rules, to be applied to ce
22 matches
Mail list logo
