[Freeipa-users] ldapsearch queries for audit
Herb Burnswell
herbert.burnswell at gmail.com
Tue Dec 16 21:29:33 UTC 2014
Craig,
Thank you for the reply. Running the ipa hostgroup-show does not appear to
provide specific information about individual users. Also, ideally I'd
like to see if I can gather the actual sudo rules that one would see in an
/etc/sudoers file to the specific hosts.
I'll investigate if the IPA commands can provide more.
Thanks,
Herb
On Tue, Dec 16, 2014 at 11:47 AM, Craig White <CWhite at skytouchtechnology.com
> wrote:
>
> *From:* freeipa-users-bounces at redhat.com [mailto:
> freeipa-users-bounces at redhat.com] *On Behalf Of *Herb Burnswell
> *Sent:* Tuesday, December 16, 2014 12:32 PM
> *To:* freeipa-users at redhat.com
> *Subject:* [Freeipa-users] ldapsearch queries for audit
>
>
>
> All,
>
>
>
> We are running the following versions on RHEL 6.6:
>
>
>
> ipa-server.x86_64 3.0.0-42.el6
>
> 389-ds.noarch 1.2.2-1.el6
>
>
>
>
>
> I'm not very experienced with the ldapsearch and would greatly appreciate
> some guidance. I'd like to run some ldapsearch's that will return access
> information for specific hosts. For example; I'd like to return what users
> have access to 'host x' and what sudo rules are available to these users.
>
>
>
> Any assistance is appreciated.
>
>
>
> TIA,
>
>
>
> Herb
>
> Herb, I am sure that some if not all of that can be derived via LDAP but I
> have found this info is much more easily returned via IPA commands.
>
>
>
> ipa hostgroup-show $SOME_HOSTGROUP
>
>
>
> Craig
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20141216/e6d7fb1f/attachment.htm>
More information about the Freeipa-users
mailing list