Sudo in directory server

bkosick at mxlogic.com (Brian Kosick) · Tue, 13 Jan 2009 16:12:45 -0700



Try sending the schema through this first 

http://directory.fedoraproject.org/download/ol-schema-migrate.pl

Brian


On Thu, 2008-11-27 at 03:08 -0700, Erling Ringen Elvsrud wrote:
> I try to add the schema for sudoers from README.LDAP in
> the srpm-file of sudo-1.6.8p12. I assume the iPlanet-version will work best, but
> get this problem when I restart directory server:
> 
> [root at testserver schema]# service dirsrv restart
> Shutting down dirsrv:
>     testserver...                                          [  OK  ]
> Starting dirsrv:
>     testserver...[27/Nov/2008:10:37:31 +0100] - Entry "cn=schema
> attributeTypes: ( 1.3.6.1.4.1.15953.9.1.1 NAME 'sudoUser' DESC
> 'User(s) who may  run sudo' EQUALITY caseExactIA5Match SUBSTR caseE"
> required attribute "objectclass" missing
> 
>                                                            [  OK  ]
> [root at testserver schema]# cat 99sudoers.ldif
> dn: cn=schema attributeTypes: ( 1.3.6.1.4.1.15953.9.1.1 NAME
> 'sudoUser' DESC 'User(s) who may  run sudo' EQUALITY caseExactIA5Match
> SUBSTR caseE
> 
> xactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
>   attributeTypes: ( 1.3.6.1.4.1.15953.9.1.2 NAME 'sudoHost' DESC
> 'Host(s) who may run sudo' EQUALITY caseExactIA5Match SUBSTR caseEx
> 
> actIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
>   attributeTypes: ( 1.3.6.1.4.1.15953.9.1.3 NAME 'sudoCommand' DESC
> 'Command(s) to be executed by sudo' EQUALITY caseExactIA5Match S
> 
> YNTAX 1.3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
>   attributeTypes: ( 1.3.6.1.4.1.15953.9.1.4 NAME 'sudoRunAs' DESC
> 'User(s) impersonated by sudo' EQUALITY caseExactIA5Match SYNTAX 1
> 
> .3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
>   attributeTypes: ( 1.3.6.1.4.1.15953.9.1.5 NAME 'sudoOption' DESC
> 'Options(s) followed by sudo' EQUALITY caseExactIA5Match SYNTAX 1
> 
> .3.6.1.4.1.1466.115.121.1.26 X-ORIGIN 'SUDO' )
>   objectClasses: ( 1.3.6.1.4.1.15953.9.2.1 NAME 'sudoRole' SUP top
> STRUCTURAL DESC 'Sudoer Entries' MUST ( cn ) MAY ( sudoUser $ sud
> 
> oHost $ sudoCommand $ sudoRunAs $ sudoOption $ description ) X-ORIGIN 'SUDO' )
> 
> Any help to get the schema for sudo correctly added is appreciated.
> 
> Thanks,
> 
> Erling
> 
> --
> Fedora-directory-users mailing list
> Fedora-directory-users at redhat.com
> https://www.redhat.com/mailman/listinfo/fedora-directory-users