[sudo-users] Fwd: SUDO centralization based on Server!
neomatrixgem at gmail.com
Tue Sep 6 08:16:37 EDT 2011
I have configured SUDO with OpenLDAP. I have created a group called
"sysadm" and assign the below commands which the users belong to this group
can execute. Now created a user called "bob" and assign him to this group.
When am logging in as bob, and run
"sudo -l", its asking me for the password and after i put the correct
password its showing me the "sudoCommand" list. But it also executes the
command "!/sbin/route" too which he should not able to execute, why its
happening? did i do anything wrong.
On Mon, Jul 4, 2011 at 11:32 AM, pradyumna dash <neomatrixgem at gmail.com>wrote:
> I need a solution for the below SUDO configuration.
> I have centralized SUDO with OpenLDAP, but i have a query like i have say
> 2 servers server1 and server2 and a used called bob which is a OpenLDAP
> What i want is like when bob loggin in to server1 it has a different SUDO
> command list and when he logs in to server2, he will get a different list of
> which is allowed to use.
> Can this issue resolved?Now am having 2 individual SUDO files in each
> server, can i centralize this ?
More information about the sudo-users