On (24/08/16 06:55), Tony Brian Albers wrote:
>And indeed the compat tree was disabled.
>
>Guess I forgot to reenable it after copying the db to a testing
>environment.
>
>Thanks guys, sudo is working fine now.
>
BTW it would work with upstream 1.13.4 even with disabled
compat tree (or 1.13.3 in el
And indeed the compat tree was disabled.
Guess I forgot to reenable it after copying the db to a testing
environment.
Thanks guys, sudo is working fine now.
/tony
On Tue, 2016-08-23 at 10:13 -0400, Rob Crittenden wrote:
> Pavel Březina wrote:
> > On 08/23/2016 01:55 PM, Tony Brian Albers wrote:
Pavel Březina wrote:
On 08/23/2016 01:55 PM, Tony Brian Albers wrote:
Here you are:
[root ~]# ldapsearch -Y GSSAPI -b $dc
'(ou=*)' -s onelevel
# profile, $domain
dn: ou=profile,$dc
objectClass: top
objectClass: organizationalUnit
ou: profiles
ou: profile
# search result
search: 4
result: 0
Not sure if it's related or not but I also reported an instance of similar
behavior of this on Ubuntu 16.0.1
On Tue, Aug 23, 2016 at 2:24 AM, Tony Brian Albers
wrote:
> Hi guys,
>
> I've been trying to get sudo to work for our day-to-day admin who have
> their own usergroup in IPA called subadmi
On 08/23/2016 01:55 PM, Tony Brian Albers wrote:
Here you are:
[root ~]# ldapsearch -Y GSSAPI -b $dc
'(ou=*)' -s onelevel
# profile, $domain
dn: ou=profile,$dc
objectClass: top
objectClass: organizationalUnit
ou: profiles
ou: profile
# search result
search: 4
result: 0 Success
# numRespons
On 08/23/2016 11:26 AM, Tony Brian Albers wrote:
Thanks Jakub,
I've attached a file with the output from looking in the log files
mentioned in the link you gave me.
I'm not sure exactly what is wrong, I don't know how to interpret
messages like: name 'tba-sadm' matched without domain, user is t
Thanks Jakub,
I've attached a file with the output from looking in the log files
mentioned in the link you gave me.
I'm not sure exactly what is wrong, I don't know how to interpret
messages like: name 'tba-sadm' matched without domain, user is tba
-sadm (is that good or bad?)
Any advice is ap
On Tue, Aug 23, 2016 at 07:11:44AM +, Tony Brian Albers wrote:
> Thanks Simon,
>
> Is this a known issue? We're on Centos 7.2 and yes, the sssd version is
> 1.13
>
> /tony
IIRC Simpson's issue was related to using AD trusts and
default_domain_suffix. I would recommend looking at logs first
On Tue, Aug 23, 2016 at 06:24:23AM +, Tony Brian Albers wrote:
> Hi guys,
>
> I've been trying to get sudo to work for our day-to-day admin who have
> their own usergroup in IPA called subadmin.
>
> For some reason I can't really get sudo to work, I suspect I am missing
> something simple, bu
om: freeipa-users-boun...@redhat.com
> [mailto:freeipa-users-boun...@redhat.com] On Behalf Of Tony Brian Albers
> Sent: Tuesday, 23 August 2016 4:24 PM
> To: freeipa-users@redhat.com
> Subject: [Freeipa-users] can't get sudo to work.
>
> Hi guys,
>
> I've been tr
't on Fedora/RedHat.
Cheers
L.
-Original Message-
From: freeipa-users-boun...@redhat.com
[mailto:freeipa-users-boun...@redhat.com] On Behalf Of Tony Brian Albers
Sent: Tuesday, 23 August 2016 4:24 PM
To: freeipa-users@redhat.com
Subject: [Freeipa-users] can't get sudo to work.
Hi guys,
I've been trying to get sudo to work for our day-to-day admin who have
their own usergroup in IPA called subadmin.
For some reason I can't really get sudo to work, I suspect I am missing
something simple, but I can't really figure out what it is.
This is my config:
# ipa sudorule-find
12 matches
Mail list logo
