Public bug reported:
Currently using sudo with sssd 1.13.4 on xenial to manage sudo rules,
groups are not resolved since last update.
I troubleshooted :
- sudo with all@debug
- sssd with [sudo] debug_level = 9 and [domain/domain.tld] debug_level = 9
- LDAP requests are correctly sent, and I can obtain correct rules
- SSSD cache is correctly stored too, I can successfully ldbsearch into!
I had to downgrade sudo (1.8.16-0ubuntu1.3) xenial to sudo
(1.8.16-0ubuntu1) xenial, to get my groups working again. I tried sudo
1.8.19, with no luck.
Working in 1.8.16-0ubuntu1.3 and 1.8.16-0ubuntu1:
sudoCommand: /bin/mount
sudoHost: ALL
sudoUser: ALL
Working in 1.8.16-0ubuntu1.3 and 1.8.16-0ubuntu1:
sudoCommand: /bin/mount
sudoHost: ALL
sudoUser: #uid
Broken since 1.8.16-0ubuntu1.3:
sudoCommand: /bin/mount
sudoHost: ALL
sudoUser: %mygroup
Broken in 1.8.16-0ubuntu1.3:
sudoCommand: /bin/mount
sudoHost: ALL
sudoUser: myuser
Patch sssd-doesnt-handle-netgroups.diff seems to break something...
** Affects: sudo (Ubuntu)
Importance: Undecided
Status: New
** Attachment added: "sssd.conf"
https://bugs.launchpad.net/bugs/1686544/+attachment/4868405/+files/sssd.conf
--
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/1686544
Title:
sudo fails to retrieve groups in sudoUser
To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/sudo/+bug/1686544/+subscriptions
--
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
