[sudo-users] Issue while Centralizing SUDO with OpenLDAP

Todd C. Miller Todd.Miller at courtesan.com
Tue May 17 10:59:33 EDT 2011


On Mon, 16 May 2011 17:46:43 +0200, pradyumna dash wrote:

> dn: cn=defaults,ou=SUDOers,dc=example,dc=com
> #objectClass: top
> objectClass: sudoRole
> cn: defaults
> description: Default sudoOption's go here
> sudoOption: always_set_home
> sudoOption: env_reset
> sudoOption: env_keep = "LANG LC_ADDRESS LC_CTYPE LC_COLLATE
> LC_IDENTIFICATION LC_MEASUREMENT LC_MESSAGES LC_MONETARY LC_NAME
> LC_NUMERIC LC_PAPER LC_TELEPHONE LC_TIME LC_ALL LANGUAGE LINGUAS
> XDG_SESSION_COOKIE"
> sudoOption: targetpw

Is that "#objectClass: top" line valid there?  I think you either
want to uncomment that line or just remove it.  I'm not sure that
hash-style comments are valid in an ldif file.

 - todd



More information about the sudo-users mailing list