View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0014002 | CentOS-7 | ipa | public | 2017-10-11 09:57 | 2017-10-11 10:02 |
| Reporter | romale | ||||
| Priority | normal | Severity | major | Reproducibility | always |
| Status | new | Resolution | open | ||
| Platform | x86_ | OS | OS Version | ||
| Product Version | 7.4.1708 | ||||
| Target Version | Fixed in Version | ||||
| Summary | 0014002: sudo rules on IPA client not works without sudo_provider = ipa | ||||
| Description | I've installed ipa-client and join this host to ipa server. On ipa server ri've configured sudo rules etc, but it's not worked without writing sudo_provider = ipa option to /etc/sssd/sssd.conf Not worked config: cat /etc/sssd/sssd.conf [domain/mydomain.ru] cache_credentials = True krb5_store_password_if_offline = True ipa_domain = mydomain.ru id_provider = ipa auth_provider = ipa access_provider = ipa ipa_hostname = mail.mydomain.ru chpass_provider = ipa ipa_server = _srv_, ipa01.mydomain.ru ldap_tls_cacert = /etc/ipa/ca.crt [sssd] services = nss, sudo, pam, ssh domains = belozersky.msu.ru [nss] homedir_substring = /home [pam] [sudo] [autofs] [ssh] [pac] [ifp] Worked config: cat /etc/sssd/sssd.conf [domain/mydomain.ru] cache_credentials = True krb5_store_password_if_offline = True ipa_domain = mydomain.ru id_provider = ipa auth_provider = ipa access_provider = ipa ipa_hostname = mail.mydomain.ru chpass_provider = ipa ipa_server = _srv_, ipa01.mydomain.ru ldap_tls_cacert = /etc/ipa/ca.crt sudo_provider = ipa [sssd] services = nss, sudo, pam, ssh domains = belozersky.msu.ru [nss] homedir_substring = /home [pam] [sudo] [autofs] [ssh] [pac] [ifp] | ||||
| Tags | No tags attached. | ||||
| abrt_hash | |||||
| URL | |||||
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2017-10-11 09:57 | romale | New Issue |
