Hi, in our environment server (ipa-server-4.2.0-15.el7_2.6.x86_64 and sssd-1.13.0-40.el7_2.1.x86_64 on CentOS 7.2) and client (ipa-client-4.2.0-15.el7_2.6.x86_64 and sssd-1.13.0-40.el7_2.1.x86_64 on CentOS 7.2) SUDO rules doesn’t get fetched anymore.
I debugged SSSD and SUDO and found out, that the first LDAP filter is (objectClass=sudoRule) and in our IPA-LDAP every rule has the class “sudoRole” not “sudoRule”. Is there a way to fix this behavior? Best regards, Fabian
-- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go to http://freeipa.org for more info on the project
