User is not allowed to add a host to a sudo rule although "Modify Sudo rule" permission has been granted
Issue
Running:
# ipa sudorule-add-host test-sudo-rule --hosts=myhost.example.org
Returns (the ipauniqueid
might differ):
ipa: ERROR: Insufficient access: Insufficient 'write' privilege to the 'externalHost' attribute of entry 'ipauniqueid=80a1ed52-67ec-11e3-931f-001a4a2239da,cn=sudorules,cn=sudo,dc=example,dc=org'.
or:
ipa: ERROR: Insufficient access: Insufficient 'write' privilege to the 'memberhost' attribute of entry 'ipauniqueid=80a1ed52-67ec-11e3-931f-001a4a2239da,cn=sudorules,cn=sudo,dc=example,dc=org'.
Although the user has "Modify Sudo rule" permissions
Environment
Red Hat Enterprise Linux 6
Subscriber exclusive content
A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.