Yeah, please enable logging in [sudo] section of sssd.
On Wed, Jul 6, 2016 at 11:03 AM, Jakub Hrozek wrote:
> On Wed, Jul 06, 2016 at 03:22:34PM +0200, Tomas Simecek wrote:
> > Hi Danila and other freeipa gurus,
> > sorry for my late answer, there is a bank holiday in CZ and I am off work
> > th
On Wed, Jul 06, 2016 at 03:22:34PM +0200, Tomas Simecek wrote:
> Hi Danila and other freeipa gurus,
> sorry for my late answer, there is a bank holiday in CZ and I am off work
> these two days.
> Yes, /etc/nsswitch.conf is fine, see:
>
> [root@spcss-2t-www ~]# cat /etc/nsswitch.conf |grep sudo
> s
Hi Danila and other freeipa gurus,
sorry for my late answer, there is a bank holiday in CZ and I am off work
these two days.
Yes, /etc/nsswitch.conf is fine, see:
[root@spcss-2t-www ~]# cat /etc/nsswitch.conf |grep sudo
sudoers: files sss
I think it is set up as part of freeipa-client package.
I
On Tue, Jul 05, 2016 at 09:58:29AM -0400, Danila Ladner wrote:
> What about /etc/nsswitch.conf?
> Does it have "sudo: files sss"?
In general this upstream guide:
https://fedorahosted.org/sssd/wiki/HOWTO_Troubleshoot_SUDO
can help you pinpoint where the issue is.
--
Manage your subscription f
What about /etc/nsswitch.conf?
Does it have "sudo: files sss"?
On Mon, Jul 4, 2016 at 3:50 AM, Tomas Simecek
wrote:
> Dear freeipa users/admins,
> I'm trying to implement freeipa in our company, so that our Unix admins
> can authenticate on Linux servers using their Windows AD account.
> Followi
On 08/04/2015 11:57 AM, Innes, Duncan wrote:
Hi folks,
Struggling with creating a sudo rule in IPA that will allow my
foreman-proxy to run specific commands. When I put the following into
/etc/sudoers.d/foreman:
[root@puppet01 ~]# cat /etc/sudoers.d/foreman
foreman-proxy ALL = NOPASSWD: /usr/bin
On Tue, Aug 04, 2015 at 10:57:34AM +0100, Innes, Duncan wrote:
> Hi folks,
>
> Struggling with creating a sudo rule in IPA that will allow my
> foreman-proxy to run specific commands. When I put the following into
> /etc/sudoers.d/foreman:
>
> [root@puppet01 ~]# cat /etc/sudoers.d/foreman
> fo
-boun...@redhat.com] On Behalf Of Innes, Duncan
Sent: 04 August 2015 12:10
To: freeipa-users@redhat.com
Subject: Re: [Freeipa-users] FreeIPA and sudo Defaults
Information:
IPA server and client both running on RHEL 6.7 fully patched.
IPA server version: ipa-server-3.0.0-47.el6.x86_64
sssd client ve
Information:
IPA server and client both running on RHEL 6.7 fully patched.
IPA server version: ipa-server-3.0.0-47.el6.x86_64
sssd client version: sssd-1.12.4-47.el6.x86_64
IPA server hosts dozens of sudo rules that work as expected. This is
the first rule, however, that needs the !requiretty
On Wed, 2013-09-11 at 11:21 +0200, Pavel Březina wrote:
> On 09/09/2013 07:32 PM, Dean Hunter wrote:
> >
> > On Mon, 2013-09-09 at 11:23 +0200, Pavel Březina wrote:
> >> On 09/08/2013 01:35 AM, Dmitri Pal wrote:
> >>> On 09/07/2013 02:11 PM, Christian Horn wrote:
> On Sat, Sep 07, 2013 at 12:
On 09/11/2013 11:21 AM, Pavel Březina wrote:
On 09/09/2013 07:32 PM, Dean Hunter wrote:
On Mon, 2013-09-09 at 11:23 +0200, Pavel Březina wrote:
On 09/08/2013 01:35 AM, Dmitri Pal wrote:
On 09/07/2013 02:11 PM, Christian Horn wrote:
On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrote:
On 09/09/2013 05:53 PM, Dean Hunter wrote:
On Mon, 2013-09-09 at 11:35 +0200, Pavel Březina wrote:
On 09/09/2013 12:26 AM, Dean Hunter wrote:
> On Sun, 2013-09-08 at 23:11 +0200, Jakub Hrozek wrote:
>> On Sun, Sep 08, 2013 at 03:42:16PM -0500, Dean Hunter wrote:
>> > On Sat, 2013-09-07 at 19:35
On 09/09/2013 07:32 PM, Dean Hunter wrote:
On Mon, 2013-09-09 at 11:23 +0200, Pavel Březina wrote:
On 09/08/2013 01:35 AM, Dmitri Pal wrote:
On 09/07/2013 02:11 PM, Christian Horn wrote:
On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrote:
Are [1] and[2] still the current and best so
On Mon, 2013-09-09 at 11:35 +0200, Pavel Březina wrote:
> On 09/09/2013 12:26 AM, Dean Hunter wrote:
> > On Sun, 2013-09-08 at 23:11 +0200, Jakub Hrozek wrote:
> >> On Sun, Sep 08, 2013 at 03:42:16PM -0500, Dean Hunter wrote:
> >> > On Sat, 2013-09-07 at 19:35 -0400, Dmitri Pal wrote:
> >> >
> >>
On Mon, 2013-09-09 at 11:29 +0200, Pavel Březina wrote:
> On 09/08/2013 11:11 PM, Jakub Hrozek wrote:
> > On Sun, Sep 08, 2013 at 03:42:16PM -0500, Dean Hunter wrote:
> >> On Sat, 2013-09-07 at 19:35 -0400, Dmitri Pal wrote:
> >>
> >>> On 09/07/2013 02:11 PM, Christian Horn wrote:
> On Sat, S
On Mon, 2013-09-09 at 11:23 +0200, Pavel Březina wrote:
> On 09/08/2013 01:35 AM, Dmitri Pal wrote:
> > On 09/07/2013 02:11 PM, Christian Horn wrote:
> >> On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrote:
> >>> Are [1] and[2] still the current and best sources of information for
> >>>
On Mon, Sep 09, 2013 at 11:35:52AM +0200, Pavel Březina wrote:
> >This problem exists with the latest updates on both Fedora 18 and Fedora 19.
> >
> >I also discovered that libsss_sudo.so is missing from Fedora 18
> >installations.
>
> It needs to be installed separately by installing libsss_sudo
On 09/09/2013 12:26 AM, Dean Hunter wrote:
On Sun, 2013-09-08 at 23:11 +0200, Jakub Hrozek wrote:
On Sun, Sep 08, 2013 at 03:42:16PM -0500, Dean Hunter wrote:
> On Sat, 2013-09-07 at 19:35 -0400, Dmitri Pal wrote:
>
> > On 09/07/2013 02:11 PM, Christian Horn wrote:
> > > On Sat, Sep 07, 2013 at
On 09/08/2013 11:11 PM, Jakub Hrozek wrote:
On Sun, Sep 08, 2013 at 03:42:16PM -0500, Dean Hunter wrote:
On Sat, 2013-09-07 at 19:35 -0400, Dmitri Pal wrote:
On 09/07/2013 02:11 PM, Christian Horn wrote:
On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrote:
Are [1] and[2] still the cu
On 09/08/2013 01:35 AM, Dmitri Pal wrote:
On 09/07/2013 02:11 PM, Christian Horn wrote:
On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrote:
Are [1] and[2] still the current and best sources of information for
configuring sudo for use with the current release of FreeIPA on Fedora
19?
1
On Sun, 2013-09-08 at 23:11 +0200, Jakub Hrozek wrote:
> On Sun, Sep 08, 2013 at 03:42:16PM -0500, Dean Hunter wrote:
> > On Sat, 2013-09-07 at 19:35 -0400, Dmitri Pal wrote:
> >
> > > On 09/07/2013 02:11 PM, Christian Horn wrote:
> > > > On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrot
On Sun, Sep 08, 2013 at 03:42:16PM -0500, Dean Hunter wrote:
> On Sat, 2013-09-07 at 19:35 -0400, Dmitri Pal wrote:
>
> > On 09/07/2013 02:11 PM, Christian Horn wrote:
> > > On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrote:
> > >> Are [1] and[2] still the current and best sources of inf
On Sat, 2013-09-07 at 19:35 -0400, Dmitri Pal wrote:
> On 09/07/2013 02:11 PM, Christian Horn wrote:
> > On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrote:
> >> Are [1] and[2] still the current and best sources of information for
> >> configuring sudo for use with the current release of
On 09/07/2013 02:11 PM, Christian Horn wrote:
> On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrote:
>> Are [1] and[2] still the current and best sources of information for
>> configuring sudo for use with the current release of FreeIPA on Fedora
>> 19?
>>
>> 1.
>> http://docs.fedoraproject
On Sat, Sep 07, 2013 at 12:06:37PM -0500, Dean Hunter wrote:
> Are [1] and[2] still the current and best sources of information for
> configuring sudo for use with the current release of FreeIPA on Fedora
> 19?
>
> 1.
> http://docs.fedoraproject.org/en-US/Fedora/18/html/FreeIPA_Guide/sudo.html
> 2
25 matches
Mail list logo
