AIX

AIX

Connect with fellow AIX users and experts to gain knowledge, share insights, and solve problems.


#Power
 View Only

  • 1.  ITDS v6.1 (LDAP) and SUDO v1.7.2p1

    Posted Thu November 12, 2009 02:08 PM

    Originally posted by: SystemAdmin


    Has anyone been able to get SUDO to work with ITDS(LDAP)? SUDO works fine so long a the users/groups are define in /etc/sudoers but when I commnent them it seems like sudo doesn't even try to use LDAP.

    Any help would be greatly appreciated.

    Thanks,

    Felix
    Our ITDS Server and Clients are running on AIX with OSLEVEL 5300-09-01-0847.
    Sudo was compiled with the following options
    0:cadetl01 /root/DownLoads/sudo-1.7.2p1=> ./configure --with-ldap=/opt/IBM/ldap/V6.1 --with-ldap-conf-file=/etc/security/ldap
    Client Info:
    0:cadetl01 /etc/security/ldap=> grep "sudo" ldap.cfg
    sudoers_base ou=SUDOers,dc=ocgov,dc=com
    sudoers_debug 2
    0:cadetl01 /etc/security/ldap=> ldapsearch -h capsldap.ocgov.com -b dc=ocgov,dc=com "cn=defaults"
    cn=defaults,ou=SUDOers,dc=ocgov,dc=com
    objectClass=top
    objectClass=sudoRole
    cn=defaults
    description=Default sudoOption's go here
    sudoOption=ignore_local_sudoers
    Server Info:
    0:capsldap /home/idsinst/idsslapd-idsinst/etc=> cat sudo.at
    attributetypes=( 1.3.6.1.4.1.15953.9.1.1 NAME 'sudoUser' DESC 'User(s) who may run sudo' EQUALITY caseExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
    attributetypes=( 1.3.6.1.4.1.15953.9.1.2 NAME 'sudoHost' DESC 'Host(s) who may run sudo' EQUALITY caseExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
    attributetypes=( 1.3.6.1.4.1.15953.9.1.3 NAME 'sudoCommand' DESC 'Command(s) to be executed by sudo' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
    attributetypes=( 1.3.6.1.4.1.15953.9.1.4 NAME 'sudoRunAs' DESC 'User(s) impersonated by sudo' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
    attributetypes=( 1.3.6.1.4.1.15953.9.1.5 NAME 'sudoOption' DESC 'Options(s) followed by sudo' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 )
    0:capsldap /home/idsinst/idsslapd-idsinst/etc=> cat sudo.oc
    objectClasses=( 1.3.6.1.4.1.15953.9.2.1 NAME 'sudoRole' DESC 'Sudoer Entries' SUP 'top' STRUCTURAL MUST ( cn ) MAY ( sudoUser $ sudoHost $ sudoCommand $ sudoRunAs $ sudoOption $ description ) )
    #AIX-Forum


  • 2.  Re: ITDS v6.1 (LDAP) and SUDO v1.7.2p1

    Posted Fri May 18, 2012 10:27 AM

    Originally posted by: rentsch0


    Hello,
    I read our post I have the same issue. Did you solve your problem or did you give-up ?.
    If you solved it, could you tell me what was wrong ?
    Regards
    Jean-Michel
    #AIX-Forum


Related Content