[Freeipa-users] Sudo Rule flag limitations
Sean Hogan
schogan at us.ibm.com
Mon Mar 27 20:52:18 UTC 2017
Hello,
I was wondering how possible it would be to allow sudo commands with
certain flags but not the actual command
Case in point:
If a user requests sudo fdisk -l to view partitions can this be set
without giving access to sudo fdisk /dev/sda ?
Would the sudo rule have to deny fdisk /dev/sda but allow fdisk -l? Not
really sure how that would work.
ipa-client-3.0.0-50.el6.1.x86_64
ipa-server-selinux-3.0.0-50.el6.1.x86_64
ipa-server-3.0.0-50.el6.1.x86_64
sssd-ipa-1.13.3-22.el6_8.4.x86_64
python-libipa_hbac-1.13.3-22.el6_8.4.x86_64
ipa-admintools-3.0.0-50.el6.1.x86_64
python-iniparse-0.3.1-2.1.el6.noarch
Thank you
Sean Hogan
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://listman.redhat.com/archives/freeipa-users/attachments/20170327/10fc4abf/attachment.htm>
More information about the Freeipa-users
mailing list