Thanks very much. I'm not sure what AFAIR is but I got this working in RHEL V6.3 by reenabling sssd for authentication and then using /etc/sudo-ldap.conf for the sudo component.
Al Licause -----Original Message----- From: sssd-users-boun...@lists.fedorahosted.org [mailto:sssd-users-boun...@lists.fedorahosted.org] On Behalf Of Dmitri Pal Sent: Wednesday, July 24, 2013 4:11 PM To: End-user discussions about the System Security Services Daemon Subject: Re: [SSSD-users] Not finding /usr/lib64/libsss_sudo.so on RHEL V6.4 On 07/24/2013 03:41 PM, Licause, Al (CSC AMS BCS - UNIX/Linux Network Support) wrote: > Thanks Jakob, > > I suspect I'll have at least one unhappy customer if they can't upgrade. > > Should we not be able to use sudo with sssd, is it possible to use > straight ldap.conf and shutdown/bypass sssd in V6.3 of RHEL for example ? Yes. In versions before 6.3 it is actually ldap.conf but AFAIR in 6.3 sudo changed the name and location of the file so please check sudo docs for that matter to be sure which file to update. > > I'm trying to get it to work and having a difficult time. > > Al > > > Al Licause > HP L2 UNIX Network Services > HP Customer Support Center > Hours 7am-3pm Pacific time USA > Manager: tom.cerni...@hp.com > > > -----Original Message----- > From: sssd-users-boun...@lists.fedorahosted.org > [mailto:sssd-users-boun...@lists.fedorahosted.org] On Behalf Of Jakub > Hrozek > Sent: Wednesday, July 24, 2013 12:40 PM > To: sssd-users@lists.fedorahosted.org > Subject: Re: [SSSD-users] Not finding /usr/lib64/libsss_sudo.so on > RHEL V6.4 > > On Wed, Jul 24, 2013 at 06:41:38PM +0000, Licause, Al (CSC AMS BCS - > UNIX/Linux Network Support) wrote: >> Ok...that did it. >> >> I installed libsss_sudo-1.9.2-82.el6.x86_64.rpm on two different RHEL >> V6.4 systems and now sudo is working through sssd and our ldap server. >> >> But I am not finding this library in the RHEL V6.3 distro, so does >> that mean sudo with sssd can not be used in Red Hat prior to V6.4 ? > yes, it's a new feature of 6.4 > >> I tried installing the sssd-1.9.2* on a v6.3 system and it failed with gobs >> of missing dependencies. > yeah, 6.4 added a ton of new features that depend on newer versions of samba > and kerberos among others.. > >> Al Licause >> From: Licause, Al (CSC AMS BCS - UNIX/Linux Network Support) >> Sent: Wednesday, July 24, 2013 11:06 AM >> To: 'End-user discussions about the System Security Services Daemon' >> Subject: RE: Not finding /usr/lib64/libsss_sudo.so on RHEL V6.4 >> >> Guess I should look before asking. >> >> I found the following rpm that was not installed on my systems: >> libsss_sudo-1.9.2-82.el6.x86_64.rpm >> I guess I'll try to install that and give it shot. >> >> Al Licause >> >> >> From: Licause, Al (CSC AMS BCS - UNIX/Linux Network Support) >> Sent: Wednesday, July 24, 2013 11:03 AM >> To: 'End-user discussions about the System Security Services Daemon' >> Subject: RE: Not finding /usr/lib64/libsss_sudo.so on RHEL V6.4 >> >> I guess I should have mentioned that I have the following installed: >> >> sudo-1.8.6p3-7.el6.x86_64 >> >> Al Licause >> >> >> From: Licause, Al (CSC AMS BCS - UNIX/Linux Network Support) >> Sent: Wednesday, July 24, 2013 10:57 AM >> To: 'End-user discussions about the System Security Services Daemon' >> Subject: Not finding /usr/lib64/libsss_sudo.so on RHEL V6.4 >> >> I thought I had this working only to realize on the two systems it >> appeared to be working, I was actually using the local sudoers file. >> >> Now that I have that and a few other nits covered, I think I almost >> have this working but when the ldap user attempts to sudo, they get the >> following: >> >> $ sudo date >> sudo: Unable to dlopen /usr/lib64/libsss_sudo.so: (null) >> sudo: Unable to initialize SSS source. Is SSSD installed on your machine? >> >> We trust you have received the usual lecture from the local System >> Administrator. It usually boils down to these three things: >> >> #1) Respect the privacy of others. >> #2) Think before you type. >> #3) With great power comes great responsibility. >> >> [sudo] password for ldap33: >> >> So my question is....where do I find the libsss_sudo.so library ? And >> which RPM was supposed >> to contain and install this component ? >> >> Al Licause >> >> >> _______________________________________________ >> sssd-users mailing list >> sssd-users@lists.fedorahosted.org >> https://lists.fedorahosted.org/mailman/listinfo/sssd-users > _______________________________________________ > sssd-users mailing list > sssd-users@lists.fedorahosted.org > https://lists.fedorahosted.org/mailman/listinfo/sssd-users > _______________________________________________ > sssd-users mailing list > sssd-users@lists.fedorahosted.org > https://lists.fedorahosted.org/mailman/listinfo/sssd-users -- Thank you, Dmitri Pal Sr. Engineering Manager for IdM portfolio Red Hat Inc. ------------------------------- Looking to carve out IT costs? www.redhat.com/carveoutcosts/ _______________________________________________ sssd-users mailing list sssd-users@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/sssd-users _______________________________________________ sssd-users mailing list sssd-users@lists.fedorahosted.org https://lists.fedorahosted.org/mailman/listinfo/sssd-users