Adding sudoers file for Active Directory Group

Comments

Hi,

I'm using sssd with the simple service provider to integrate my rhel 7 hosts into an Active Directory Domain. I would like to grant one group from Active Directory the permission to use sudo. This works while adding the following line to /etc/sudoers:

%t01.example.com  ALL=(ALL) ALL
## Read drop-in files from /etc/sudoers.d (the # here does not mean a comment)
#includedir /etc/sudoers.d

Instead of editing the /etc/sudoers file I would like to add a file in /etc/sudoers.d/ which contains the information necessary. To do so I created the file /etc/sudoers.d/t01.example.com containing:

%t01.example.com  ALL=(ALL) ALL

But this does not work. The user trying to use sudo gets the error that he is not in the sudoers file. Are the any requirements for the file name or content?

Could someone explain what to do to get this working, please?

Best regards,
Joerg

Started 2017-03-01T13:08:00+00:00 by

Jörg Kastning

Guru 2294 points

Select Your Language

Adding sudoers file for Active Directory Group

Responses

Quick Links

Help

Site Info

Related Sites

About

Red Hat legal and privacy links

Red Hat legal and privacy links

Responses

Quick Links

Help

Site Info

Related Sites

Systems Status

About

Red Hat legal and privacy links

Red Hat legal and privacy links