[Freeipa-users] sudo users
Teik Hooi Beh
thbeh at thbeh.com
Thu Mar 10 02:50:08 UTC 2016
Hi,
I am trying to deploy sudo rules in FreeIPA 4.2 on Centos 7.2. I have
created 2 sudo rules, one with sudo options=!authenticate (NOPASSWD) and
the other sudo options=authenticate (PASSWD) (which I assume requires the
user to key in the password to run).
The NOPASSWD works but the one with PASSWD kept denying eventhough password
seems authenticated (from /var/log/secure) -
Mar 10 02:38:31 node1 sudo: pam_sss(sudo:auth): authentication success;
logname=ttester uid=5001 euid=0 tty=/dev/pts/1 ruser=ttester rhost=
user=ttester
Mar 10 02:38:31 node1 sudo: pam_sss(sudo:account): Access denied for user
ttester: 6 (Permission denied)
I have followed instructions from here -
http://blog.delouw.ch/2013/07/25/centrally-manage-sudoers-rules-with-ipa-part-i-preparation/
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20160310/2cb001c8/attachment.htm>
More information about the Freeipa-users
mailing list