Date: Wed, 19 Dec 2018 09:42:03 -0500 From: David Mehler <dave.mehler@gmail.com> To: freebsd-questions <freebsd-questions@freebsd.org> Subject: FreeBSD, acme.sh, and sudo Message-ID: <CAPORhP7Vcjc2BzgJ7KePc=LT%2B4Zz7CPdOUqNPuH0y=ba=mdpAA@mail.gmail.com>
next in thread | raw e-mail | index | archive | help
Hello, I've got a FreeBSD 11.2 system. I'm running apache 2.4 and acme.sh for letsencrypt certificate management. I've got one problem, keys and certificates are created, and installed and renewed correctly, but at the end of the command I do --reloadcmd "sudo service apache24 reload" so that any renewed certificates will be picked up. I am getting the following from sudo: [acme@xx ~]$ sudo service apache24 reload sudo: pam_open_session: system error sudo: policy plugin failed session initialization In my sudoers file I have: # Allow anyone in the acme group, without a password, to use /usr/sbin/service commands %acme ALL=NOPASSWD: ALL and user privileges: # finger acme Login: acme Name: ACME protocol client Directory: /var/db/acme Shell: /usr/local/bin/bash No Mail. No Plan. #groups acme acme #id acme uid=169(acme) gid=169(acme) groups=169(acme) Suggestions welcome. Thanks. Dave.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CAPORhP7Vcjc2BzgJ7KePc=LT%2B4Zz7CPdOUqNPuH0y=ba=mdpAA>