[Freeipa-users] freeIPA client sudo / sssd setup
Lukas Slebodnik
lslebodn at redhat.com
Tue Apr 8 20:24:58 UTC 2014
On (08/04/14 12:52), Nathan Broadbent wrote:
>>
>> I know I'm missing something simple. But I just can't get this ipa
>>> client to accept any sudo rules.
>>>
>>>
>I rand into the same issue. It's not documented anywhere, but you need to
>enable the 'sudo' service in /etc/sssd/sssd.conf
>
>You need to change:
>[sssd]
>services = nss, pam, ssh
>
>to:
>[sssd]
>services = nss, pam, ssh, sudo
>
>
>and then restart sssd. (sudo service sssd restart)
man sssd-sudo says:
CONFIGURING SSSD TO FETCH SUDO RULES
All configuration that is needed on SSSD side is
to extend the list of services with "sudo" in [sssd] section of sssd.conf(5).
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^
I would say it is documented, but nobody pointed you to manual pages.
LS
More information about the Freeipa-users
mailing list