[sudo-users] Re: sudo LDAP question

Aaron Spangler aaron777 at gmail.com
Sat Aug 6 19:57:19 EDT 2005


Doing the Netgroup tripple is a great way to do it.  You can also
include multiple hosts just like you add multiple commands within the
same sudo role:

cn=role1, ...
sudoHost: host1
sudoHost: host2
sudoHost: host3

If you are asking about host aliases.  I did not provide a featue for
aliases in LDAP.  I wanted to make it really easy to parse and write
front ends to and to make it really easy for corporate auditors to

- Aaron

On 8/5/05, Tom Alessi <toma at babycenter.com> wrote:
> ....
> One other question if you have the time.  For the sudoHost: entry in
> LDAP, how can we add multiple systems at once like we can in the sudoers
> file?  I'm using a nisNetgroupTriple (with only the first variable
> filled in) which works great with the ldap enabled sudo, but I'm
> wondering if there is an easier way.
> Tom Alessi

More information about the sudo-users mailing list