Re: [Freeipa-users] hostgroups not working for Sudo commands
Yes I'd missed this, echo nisdomainname ods.vuw.ac.nz /etc/rc.d/rc.local Is it not possible to automate this (sudo setup) more in the ipa-client-install ? control whether you want it via a sudo_enable=yes or no somewhere? Ive added it to my kickstart for now so my sudo setup is mostly automated. RHEL 6.3 added NISDOMAIN as a usable entry in /etc/sysconfig/network by the way - it's a bit cleaner than sticking stuff in rc.local ... ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] hostgroups not working for Sudo commands
Hi, Yes I'd missed this, echo nisdomainname ods.vuw.ac.nz /etc/rc.d/rc.local Is it not possible to automate this (sudo setup) more in the ipa-client-install ? control whether you want it via a sudo_enable=yes or no somewhere? Ive added it to my kickstart for now so my sudo setup is mostly automated. Thanks regards Steven Jones Technical Specialist - Linux RHCE Victoria University, Wellington, NZ 0064 4 463 6272 From: JR Aquino [jr.aqu...@citrix.com] Sent: Monday, 6 August 2012 5:19 p.m. To: Steven Jones Cc: freeipa-users@redhat.com Subject: Re: [Freeipa-users] hostgroups not working for Sudo commands On Aug 5, 2012, at 1:54 PM, Steven Jones steven.jo...@vuw.ac.nz wrote: Hi, I have setup a sudo command but no matter what I do I cannot get a host-group to work, but I can specify a specific host without issue.I assume this is a problem with the sssd deamon on the RHEL6.3 client? So what info/logs are needed to fault find this please? Set sudoers_debug 2 On your sudo-ldap.conf Run the sudo command. You should see it scroll a list of hostgroups etc. If you do not have your domainname set, your sudo commands will fail on the hostgroup because they expect to see the nis domain match. regards Steven Jones Technical Specialist - Linux RHCE Victoria University, Wellington, NZ 0064 4 463 6272 ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
[Freeipa-users] hostgroups not working for Sudo commands
Hi, I have setup a sudo command but no matter what I do I cannot get a host-group to work, but I can specify a specific host without issue.I assume this is a problem with the sssd deamon on the RHEL6.3 client? So what info/logs are needed to fault find this please? regards Steven Jones Technical Specialist - Linux RHCE Victoria University, Wellington, NZ 0064 4 463 6272 ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
Re: [Freeipa-users] hostgroups not working for Sudo commands
On Aug 5, 2012, at 1:54 PM, Steven Jones steven.jo...@vuw.ac.nz wrote: Hi, I have setup a sudo command but no matter what I do I cannot get a host-group to work, but I can specify a specific host without issue.I assume this is a problem with the sssd deamon on the RHEL6.3 client? So what info/logs are needed to fault find this please? Set sudoers_debug 2 On your sudo-ldap.conf Run the sudo command. You should see it scroll a list of hostgroups etc. If you do not have your domainname set, your sudo commands will fail on the hostgroup because they expect to see the nis domain match. regards Steven Jones Technical Specialist - Linux RHCE Victoria University, Wellington, NZ 0064 4 463 6272 ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users ___ Freeipa-users mailing list Freeipa-users@redhat.com https://www.redhat.com/mailman/listinfo/freeipa-users
