freeipa

Clone
Source Code
GIT

#8229 sudo rule doesn't work
Closed: invalid 4 years ago by rcritten. Opened 4 years ago by elhamsadat.

Closed: invalid
Reopen Issue

Request for enhancement

As <persona, e.g. admin> , I want <what?> so that <why?>.

Issue

sudo rule doesn't work

Steps to Reproduce

Hi
i define a sudo rule with this feauture based on https://github.com/freeipa/freeipa-workshop/blob/master/8-sudorule.rst instruction:

rule name: sysadmin-sudo
Enabled: TRUE
Host category: all
command category: all
RunAs User Category: all
RunAs Group category: all

then i define a user "sysadmin" and add "sysadmin-sudo" rule to this user.

when i connect with this user and run a command with sudo(ex, sudo systemctl stop rsyslog)
it shows:
sudo: PAM account management error: Permission denied

whats wrong?!

Actual behavior

PAM account management error: Permission denied

Expected behavior

do command with sudo rule

Version/Release/Distribution

ipa-server-4.6.5-11.el7

Additional info:

We prefer to use the freeipa-users list to triage problems and use issues for known bugs and RFEs. Closing this to follow-up on the mailing list. We can re-open if a real bug is found.

Metadata Update from @rcritten:
- Issue close_status updated to: invalid
- Issue status updated to: Closed (was: Open)
4 years ago

Login to comment on this ticket.

Metadata
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
None
Powered by Pagure 5.13.3
DocumentationFile an IssueAboutSSH Hostkey/Fingerprint
© Red Hat, Inc. and others.