Skip site navigation (1)Skip section navigation (2) 
Date:      Tue, 3 Jun 2008 15:10:18 +0200
From:      karim.bourenane@orange-ftgroup.com
To:        freebsd-current@freebsd.org
Subject:   [BSD7] Openldap with SUDOers
Message-ID:  <OF66C312D5.2CD82282-ONC125745D.00450EC1-C125745D.0048173C@dc.par.equant.com>
next in thread | raw e-mail | index | archive | help 

Hi Team, and All

I want to create a sudoers profile in my openldap, but i dont undestand 
how to do.
Actually in my Ldap i have :
In slapd.conf
        # Sudoers definition base
        sudoers_base   ou=SUDOers,dc=domain,dc=com
        sudoers_debug 0

Distinguished Name: ou=SUDOers,dc=domain,dc=com

Distinguished Name: cn=defaults,ou=SUDOers,dc=domain,dc=com
With sudoOption:
                ignore_dot
                !mail_no_user
                log_host
                !syslog
                timestamp_timeout=10

Distinguished Name: cn=role1,ou=SUDOers,dc=domain,dc=com
ObjetClass : Top and SudoRole
sudoCommand : All
sudoHost : ALL
sudoOption: !authenticate
sudoUser : login1,login2

When i connect and try command "sudo su"
%sudo su
        Password:
        login1 is not in the sudoers file.  This incident will be 
reported.

Can anyone have idea, or better solution :)

Thanks


Karim Bourenane
Orange Business Services / Equant
RO&SI / IBNF / ENO / GNS
112 Avenue Charles de Gaules 
92200 Neuilly S/Seine
Phone:             +33156 76 35 52
Fax:                   +33156 76 35 04
http://www.equant.com

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?OF66C312D5.2CD82282-ONC125745D.00450EC1-C125745D.0048173C>