#2100 sudo responder does not support specifying just one of sudoNotBefore/sudoNotAfter
Closed: Fixed None Opened 5 years ago by jhrozek.

Nikolai found out that sudo-ldap allows specifying just one of the two attributes. SSSD requires both.

Fields changed

milestone: NEEDS_TRIAGE => SSSD 1.11.2

Fields changed

owner: somebody => pbrezina
status: new => assigned

Fields changed

patch: 0 => 1

resolution: => fixed
status: assigned => closed

Fields changed

changelog: => When a sudo rule is restricted by time using the sudoNotBefore/sudoNotAfter attribute, just one of these is required, which is what the traditional ldap backend requires as well.

Metadata Update from @jhrozek:
- Issue assigned to pbrezina
- Issue set to the milestone: SSSD 1.11.2

2 years ago

Login to comment on this ticket.