Hi, On Fri, Oct 25, 2024 at 1:35 PM Carlos Lopez Molina via FreeIPA-users < freeipa-users@lists.fedorahosted.org> wrote:
> Hi, I managed to have a freeipa client version 4.9.8 working on Ubuntu > 22.04 with the following features: > - ssh authentication with ldap. > - OTP for ssh authentication with password > > For the record, I'm using this docker image > docker.io/freeipa/freeipa-server:rocky-9-4.11.0 to run freeipa-server. > > I'm struggling to enable sudo authorization using freeipa server policies. > The main blocker is that the instructions I found( > https://freeipa.readthedocs.io/en/latest/workshop/8-sudorule.html) points > to use authselect: > > [client]$ sudo authselect enable-feature with-sudo > > to reconfigure sssd, but seems that this tool is only available on > fedora/redhat flavours, and not for ubuntu. > Is there any way to use authselect in ubuntu. Or anybody knows which > changes would do authselect in the ubuntu client? > Before authselect was available in Fedora, IPA was relying on authconfig. IIRC sudo didn't require any specific setting (the client install would configure /etc/nsswitch.conf with sudoers: sss files unless it was called with --no-sudo). flo > Any help would be greatly appreciated. > -- > _______________________________________________ > FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org > To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org > Fedora Code of Conduct: > https://docs.fedoraproject.org/en-US/project/code-of-conduct/ > List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines > List Archives: > https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org > Do not reply to spam, report it: > https://pagure.io/fedora-infrastructure/new_issue >
-- _______________________________________________ FreeIPA-users mailing list -- freeipa-users@lists.fedorahosted.org To unsubscribe send an email to freeipa-users-le...@lists.fedorahosted.org Fedora Code of Conduct: https://docs.fedoraproject.org/en-US/project/code-of-conduct/ List Guidelines: https://fedoraproject.org/wiki/Mailing_list_guidelines List Archives: https://lists.fedorahosted.org/archives/list/freeipa-users@lists.fedorahosted.org Do not reply to spam, report it: https://pagure.io/fedora-infrastructure/new_issue
