I asked Lukas this but he wasn't positive, is the objectClasses different when adding 'ldap_sudo_search_base' ? Or is it just location?
Eitherway, I think this is going to be a little more concise, "When SSSD is configured and using the IPA provider, sudo is automatically enabled. The sudo search base is cn=sudo,ou=sudoers,$DC. If a different search base is defined in sssd.conf, it will use the value from the configuration file. (e.g. ou=sudoers,$DC generated by compat plugin)." _______________________________________________ sssd-devel mailing list [email protected] https://lists.fedorahosted.org/admin/lists/[email protected]
