I've configured sudo to use the ipa backend basically using the config
ipa-client-install generated for me and it's mostly working.
However, when I configure sudo rules in FreeIPA with hostgroups containing a
large amount of hosts, and I attempt to run sudo with an emptied sssd cache I
get dela
(Apologies for the late reply.)
Thanks. I don't quite understand the sudo side of things here..
I had a look at the FreeIPA LDAP and sssd log and it looks like sssd performs a
quick LDAP query which retrieves all the relevant sudo rules for the host it's
running on at startup. I don't quite see
