[Freeipa-users] Valid documentation for sudo setup for version 4.0.3

Vaclav Adamec vaclav.adamec at suchy-zleb.cz
Sun Oct 19 07:08:07 UTC 2014

Thanks everyone for help, for centos65 latest, I really need to do these

yum install ipa-client libsss_sudo
ipa-client-install ...
/etc/sssd/sssd.conf (ldap setup based on man)
/etc/nsswitch.conf  (sss provider for sudoers based on man)
and set nisdomainname

than sudo starts to work. One last thing is that latest CentOS65 64b ipa
client and openssh is not fully compatible, during client registration it
said "Installed openssh does not support dynamically loading authorized
user keys" so no access via key is possible, but if you add
"AuthorizedKeysCommand /usr/bin/sss_ssh_authorizedkeys" to sshd config it's
ok, so probably some bad detection of openssh version.

-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20141019/2b7bcdd0/attachment.htm>

More information about the Freeipa-users mailing list