Hi Alka, I think you can get useful info here: https://www.redhat.com/ archives/freeipa-users/2017-May/msg00028.html
On Fri, Aug 4, 2017 at 8:31 AM, Alka Murali via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote: > Hello, > > I have implemented a freeipa server and enrolled many clients like Ubuntu, > Debian, CentOS. In all those clients, my sudo rules worked. > > However if I try the sudo rules to the users in Ubuntu 16, its not > recognising the sudo user > > ------ > > Aug 4 19:22:40 **** sudo: pam_unix(sudo:auth): authentication failure; > logname=device uid=1441000030 euid=0 tty=/dev/pts/1 ruser=device rhost= > user=device > > Aug 4 19:22:40 ***** sudo: pam_sss(sudo:auth): authentication success; > logname=device uid=1441000030 euid=0 tty=/dev/pts/1 ruser=device rhost= > user=device > > Aug 4 19:22:40 ***** sudo: device : user NOT authorized on host ; > TTY=pts/1 ; PWD=/home/device ; USER=root ; COMMAND=/usr/bin/less > /var/log/syslog > > ------- > > I have updated the sssd and ldap configuration file as well as nssswitch > conf. However the rule was not being accepted. > > I have properly configured SSSD, LDAP and NSS. Let me know if any > additional settings needs to be updated. > > > Awaiting your reply. > > > Thanks and Regards, > > Alka Murali > > _______________________________________________ > FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org > To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org > >
_______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org