sudo command can no longer use fully qualified user or group names in /etc/sudoers after upgrade to sudo-1.8.6p3-7.el6

Solution Unverified - Updated -

Issue

  • Customer has a sudo file that contains a group as follows,
%admin@ABC.EDU.AU  ALL=(ALL)       ALL

which allows full sudo access to all members of group admin from the ABC.EDU.AU sssd domain on the server. When upgrading to sudo 1.8.6 package, this group is no longer recognised. The group is recognised when removing the domain (ie. @ABC.EDU.AU), but this is not an acceptable fix.

Environment

  • Red Hat Enterprise Linux 6.4
  • sudo works with package:
    • sudo-1.7.4p5-13.el6_3.x86_64
  • breaks after installing:
    • sudo-1.8.6p3-7.el6.x86_64

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content