[sudo-users] Issue while Centralizing SUDO with OpenLDAP
Todd C. Miller
Todd.Miller at courtesan.com
Tue May 17 10:59:33 EDT 2011
On Mon, 16 May 2011 17:46:43 +0200, pradyumna dash wrote:
> dn: cn=defaults,ou=SUDOers,dc=example,dc=com
> #objectClass: top
> objectClass: sudoRole
> cn: defaults
> description: Default sudoOption's go here
> sudoOption: always_set_home
> sudoOption: env_reset
> sudoOption: env_keep = "LANG LC_ADDRESS LC_CTYPE LC_COLLATE
> LC_IDENTIFICATION LC_MEASUREMENT LC_MESSAGES LC_MONETARY LC_NAME
> LC_NUMERIC LC_PAPER LC_TELEPHONE LC_TIME LC_ALL LANGUAGE LINGUAS
> XDG_SESSION_COOKIE"
> sudoOption: targetpw
Is that "#objectClass: top" line valid there? I think you either
want to uncomment that line or just remove it. I'm not sure that
hash-style comments are valid in an ldif file.
- todd
More information about the sudo-users
mailing list