[sudo-users] ... is not allowed to run sudo on ...

Bernard Fay bernard.fay at gmail.com
Tue Oct 4 06:27:40 MDT 2016

Hello group,

I defined the following in sudoers to allow a script to modify the samba
password of a user with root privileges.

%users  localhost=(ALL) NOPASSWD:/bin/smbpasswd

If I try to run "sudo /bin/smbpasswd":

[bern at FILESRV01 ~]$ sudo /bin/smbpasswd
[sudo] password for bernard.fay:
bern is not allowed to run sudo on FILESRV01.  This incident will be

User bern is part of the group users:
[bern at FILESRV01 ~]$ groups bern
bern : Administrators users

Could it because group users is an LDAP group?

If not, what I am doing wrong?


More information about the sudo-users mailing list