[sudo-users] Sudo LDAP hp-ux

Todd C. Miller Todd.Miller at courtesan.com
Tue Mar 10 16:12:13 EDT 2009

In message <C5DC3381.339DA%eric.freeman at tbwachiat.com>
	so spake Eric Freeman (eric.freeman):

> We are running LDAPUX B.04.00, on HP-UX B.11.11. We are authenticating
> against LDAP without any issues.
> I want to point sudo v1.70 to authenticate against ldap. According to the
> sudo documentation I need to add the following lines to /etc/ldap.conf. It
> appears on hp-ux I need to modify the /usr/local/etc/openldap/ldap.conf
> file. I believe this is where you need to put the sudoers_base file and the
> host of the ldap server. I have modified both files but sudo does not appear
> to be talking to my ldap server.

Try running this:

# sudo -V | grep ldap

You should get output like:

ldap.conf path: /etc/ldap.conf
ldap.secret path: /etc/ldap.secret

If you don't see an ldap.conf in the output your sudo was not
compiled with ldap support.

> I have edited my nsswitch.conf file per the manual.

You have an entry in /etc/nsswitch.conf that looks like this?

sudoers: ldap files

 - todd

More information about the sudo-users mailing list