On Wed, 2026-06-10 at 15:40 -0700, Samuel Sieb wrote: > On 6/10/26 3:24 PM, Patrick O'Callaghan wrote: > > On Wed, 2026-06-10 at 18:03 -0400, Ranbir wrote: > > > On Wed, 2026-06-10 at 22:07 +0100, Patrick O'Callaghan wrote: > > > > Is your userID in the wheel group? > > > > > > > > Does /etc/sudoers have these settings: > > > > ## Allows people in group wheel to run all commands > > > > ## %wheel ALL=(ALL) ALL > > > > > > > > ## Same thing without a password > > > > %wheel ALL=(ALL) NOPASSWD: ALL > > > > > > My workstation is enrolled into AlmaLinux 9 IdM and it has a > > > trust > > > with AD. I'm logged in with my trusted account (i.e. AD user). My > > > sudo privileges are managed in IdM, so it's not in the local > > > wheel > > > group. > > > > I've no idea what IdM is, but I'd wonder what AD (Active > > Directory?) > > has to do with local Linux privileges. Surely it's for accessing > > network resources? > > AD is the Microsoft management system. IdM is identity management > and > is linked to the AD. (I use freeipa in some places) This lets you > centrally manage accounts for multiple computers. e.g. a school lab > where a student could use their account to login on any computer. > And > the administrator account is in the "wheel" group, so it can use > "sudo" > on any of those computers.
Yes, I do have an idea of what AD is for, though I hadn't heard of IdM. However the OP has only mentioned his workstation, not a lab context or similar. Be that as it may, in the case of a /etc/sudoers file the administrator can configure it to not require a password from members of the wheel group, which is what I showed in my example. Presumably an AD installation has some way of getting the same result and so that would be the place to look. poc -- _______________________________________________ users mailing list -- [email protected] To unsubscribe send an email to [email protected] Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedoraproject.org/archives/list/[email protected] Do not reply to spam, report it: https://forge.fedoraproject.org/infra/tickets/issues/new
