How to provide privileges to a normal IPA user such that it manages a particular sudo rule or hbac-rule or any user or a group ?

Solution Verified - Updated -

Issue

  • I want to give privileges to a non-privileged user in IPA such that it can manage only a particular host group or sudo rule or any user or any group.

  • We can use RBAC to give privileges to normal user to give such privileges however it gives privileges for that user to manage all the rules or all the users or groups. How to give this to only a particular objects ?

Environment

  • Red Hat Enterprise Linux 7

  • IPA 4

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content