freeipa

Clone
Source Code
GIT

#4344 "Modify Sudo rule" permission doesn't include the memberhost externalhost attributes
Closed: Fixed None Opened 9 years ago by mkosek.

Closed: Fixed
Reopen Issue

Ticket was cloned from Red Hat Bugzilla (product Red Hat Enterprise Linux 7): Bug 1093159

Please note that this Bug is private and may not be accessible as it contains confidential Red Hat customer information.

Description of problem:
The "Modify Sudo rule" doesn't include the memberhost externalhost attributes.

Version-Release number of selected component (if applicable):
ipa-server-3.0.0-37.el6.x86_64

How reproducible:
Everytime

Steps to Reproduce:
1. kinit user (where user is with "Modify Sudo rule" permissions)
2. ipa sudorule-add-host sudorule --hosts=ipa-replica.example.org

Actual results:
ipa: ERROR: Insufficient access: Insufficient 'write' privilege to the
'externalHost' attribute of entry...


Expected results:
No error the host should be added to the sudo rule.

Additional info:

master:

  • f802845 Add missing attributes to 'Modify Sudo rule' permission

Metadata Update from @mkosek:
- Issue assigned to pviktori
- Issue set to the milestone: FreeIPA 4.0 Backlog
7 years ago

Login to comment on this ticket.

Metadata
None
None
None
normal
None
None
None
None
defect
None
None
Access control
None
1
None
None
None
None
https://bugzilla.redhat.com/show_bug.cgi?id=1093159
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.