Thanks you for the response. The amount of rules is : 50+ Host_Alias 50+ User_Alias 10+ Runas_Alias 450+ Cmnd_Alias
The user/groups --> command mapping itself is about 50 more rules. 2014-12-27 23:28 GMT+02:00 Rob Crittenden <[email protected]>: > Genadi Postrilko wrote: > > I'm not sure i understand what you mean. > > IPA uses its own schema for sudo so the script will not work. I haven't > looked at it so don't know what amount of effort would be needed to make > it work. > > You can create the sudo commands and rules but in order to associate > user and groups with the rules they will need to exist. > > How many rules are we talking about? > > rob > > > > > 2014-12-22 22:50 GMT+02:00 Craig White <[email protected] > > <mailto:[email protected]>>: > > > > I would not recommend that path with FreeIPA.____ > > > > __ __ > > > > This is clearly the way to go with FreeIPA____ > > > > __ __ > > > > > https://access.redhat.com/documentation/en-US/Red_Hat_Enterprise_Linux/7/html/Linux_Domain_Identity_Authentication_and_Policy_Guide/sudo.html____ > > > > __ __ > > > > Craig White____ > > > > System Administrator____ > > > > O623-201-8179 M602-377-9752____ > > > > __ __ > > > > cid:[email protected]____ > > > > __ __ > > > > SkyTouch Technology 4225 E. Windrose Dr. Phoenix, AZ > 85032____ > > > > __ __ > > > > *From:*[email protected] > > <mailto:[email protected]> > > [mailto:[email protected] > > <mailto:[email protected]>] *On Behalf Of *Genadi > > Postrilko > > *Sent:* Monday, December 22, 2014 1:38 PM > > *To:* [email protected] <mailto:[email protected]> > > *Subject:* [Freeipa-users] Importing /etc/sudoers into IPA.____ > > > > __ __ > > > > Hello All.____ > > > > __ __ > > > > I'm planning to migrate the /etc/sudoers into the IPA.____ > > > > I have read that sudoers2ldif should be used to import /etc/sudoers > > into LDAP.____ > > > > http://www.sudo.ws/sudo/readme_ldap.html ____ > > > > The script will work as is? or changes should be add?____ > > > > Should the users and group mentioned in sudoers be created > > beforehand?____ > > > > __ __ > > > > Thanks,____ > > > > Genadi.____ > > > > > > > > > >
-- Manage your subscription for the Freeipa-users mailing list: https://www.redhat.com/mailman/listinfo/freeipa-users Go To http://freeipa.org for more info on the project
