(10421)
Cc: likewise-open-discuss@lists.likewisesoftware.com
Subject: Re: [Likewise-open-discuss] SUDO Access
The previous post was a working syntax for group membership.
%MYDOMAIN\\MyLinuxAdminGroup ALL=(ALL) ALL
You'd have to replace the domain and group with actual names from AD.
If that do
009 4:16 PM
To: Drew Patten
Cc: likewise-open-discuss@lists.likewisesoftware.com
Subject: RE: [Likewise-open-discuss] SUDO Access
The dot is somewhat worrisome, although it's included in the NetBIOS
character set it may not be parsed correctly. Assuming this is Linux,
what
do the following return:
glio, Frank (10421)
Cc: likewise-open-discuss@lists.likewisesoftware.com
Subject: RE: [Likewise-open-discuss] SUDO Access
Which is exactly what I have:
%DOMAIN.LOCAL\\domain^admins ALL=(ALL) ALL
%DOMAIN.LOCAL\\Linux ALL=(ALL) ALL
$ id
uid=1872233557(drew.patten) gid=1872232961(domain^users)
groups=1872
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Drew Patten wrote:
> Which is exactly what I have:
>
> %DOMAIN.LOCAL\\domain^admins ALL=(ALL) ALL
> %DOMAIN.LOCAL\\Linux ALL=(ALL) ALL
>
> $ id
> uid=1872233557(drew.patten) gid=1872232961(domain^users)
> groups=1872232960(domain^admins),1872232961
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Drew Patten wrote:
> I tried getting this to work with the latest version and
> didn't have any luck. I was never able to grant an AD
> account root access, to this day I have to 'su' to gain it.
>
> Can you copy/paste the line in you sudoer's file so
kewise.com]
Sent: Tuesday, April 28, 2009 3:56 PM
To: Drew Patten; Briguglio, Frank (10421)
Cc: likewise-open-discuss@lists.likewisesoftware.com
Subject: RE: [Likewise-open-discuss] SUDO Access
The previous post was a working syntax for group membership.
%MYDOMAIN\\MyLinuxAdminGroup ALL=(ALL)
en-discuss@lists.likewisesoftware.com
Subject: Re: [Likewise-open-discuss] SUDO Access
I tried getting this to work with the latest version and didn't have any
luck. I was never able to grant an AD account root access, to this day I
have to 'su' to gain it.
Can you copy/paste the line in you sudoer'
From: Justin Pittman [mailto:jpitt...@likewise.com]
Sent: Tuesday, April 28, 2009 3:08 PM
To: Briguglio, Frank (10421)
Cc: likewise-open-discuss@lists.likewisesoftware.com
Subject: RE: [Likewise-open-discuss] SUDO Access
Likewise Enterprise has the same functionality as Open for name
services.
The users or
...@likewise.com]
Sent: Tuesday, April 28, 2009 3:08 PM
To: Briguglio, Frank (10421)
Cc: likewise-open-discuss@lists.likewisesoftware.com
Subject: RE: [Likewise-open-discuss] SUDO Access
Likewise Enterprise has the same functionality as Open for name
services.
The users or groups defined in a sudoers file will
il 28, 2009 10:39 AM
To: likewise-open-discuss@lists.likewisesoftware.com
Subject: Re: [Likewise-open-discuss] SUDO Access
Good point.
I did see where I could use a combination of an AD group and the sudoers
file. Is anyone trying this approach, seems to be the best approach.
-- Frank J. B
Frank,
To add to what has already been offered, you can also set your admins up in a
local group and use that group to control access via the sudoers file if you
want more granular access (that is how we manage developer accounts).
Please be aware, however, that your Linux admins won't be able
Good point.
I did see where I could use a combination of an AD group and the sudoers
file. Is anyone trying this approach, seems to be the best approach.
-- Frank J. Briguglio | Protiviti Government Solutions
From: Alan Hatch [mailto:aha...@dollargeneral.
Yes you can. Users can login with AD credentials and then 'su' to get
root privileges. Obviously they will need to know the root password and
no you don't have to modify the sudoers files.
This is with the free version, which we currently use to do just that
and more.
Drew Patten
Sys
13 matches
Mail list logo
