[LDAP-interop] Correction to my LDAP HOW-TO docs

Gary Tay Teng Teck garyttt at singnet.com.sg
Tue Jul 25 19:07:09 EDT 2006 

I refer to my home page at:

http://web.singnet.com.sg/~garyttt/

Fwded user feedback about my home page, amended sudoCommand line. Thks Sergey

Gary

>From - Wed Jul 26 06:30:49 2006
X-Account-Key: account2
X-UIDL: 1055211047.34041
X-Mozilla-Status: 0001
X-Mozilla-Status2: 00000000
Return-Path: <motoroff at gmail.com>
Received: from mx18.singnet.com.sg ([10.1.1.149])
	by mailbox.singnet.com.sg (MOS 3.4.4-GR)
	with ESMTP id NCP70143;
	Wed, 26 Jul 2006 04:51:15 +0800 (SGT)
Received: from ug-out-1314.google.com (ug-out-1314.google.com [66.249.92.174])
	by mx18.singnet.com.sg (8.13.6/8.13.6) with ESMTP id k6PKpKBO032630
	for <garyttt at singnet.com.sg>; Wed, 26 Jul 2006 04:51:21 +0800
Received: by ug-out-1314.google.com with SMTP id u40so2922073ugc
        for <garyttt at singnet.com.sg>; Tue, 25 Jul 2006 13:51:12 -0700 (PDT)
DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws;
        s=beta; d=gmail.com;
        h=received:message-id:date:from:to:subject:mime-version:content-type:content-transfer-encoding:content-disposition;
        b=Frh1cMssaL9EXmq6s6iTx8CdbX05son7zJdjRr2Miuuk+bbOojjExSc2Wi+R721kYo/Cg49EU1ZIpTxJUhVMa5/Pq4RMC5UwX4+eMuGvNO+BQY1Fw5lpixorz2eBmVB54DS7pB3PesahgTTHvRj+Op/Sg84h2gfrxhk95xtVf2E=
Received: by 10.78.195.9 with SMTP id s9mr2636877huf;
        Tue, 25 Jul 2006 13:51:12 -0700 (PDT)
Received: by 10.78.16.17 with HTTP; Tue, 25 Jul 2006 13:51:12 -0700 (PDT)
Message-ID: <f4b18a4b0607251351u5aff5785s416b2f27d32a8fe1 at mail.gmail.com>
Date: Tue, 25 Jul 2006 15:51:12 -0500
From: "Sergey Motorny" <motoroff at gmail.com>
To: garyttt at singnet.com.sg
Subject: sudo and LDAP correction
MIME-Version: 1.0
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Content-Disposition: inline

Gary,

Thanks for the awesome site. I've been using it A LOT! Today, I
finished sudo + LDAP on two of my Solaris 9 and 10 boxes. I did find
one error that you might want to correct:
sudoCommand: (ALL) ALL <-- even though the script does generate this
entry, the correct syntax is
sudoCommand: ALL
without the (ALL). You create different LDAP Roles that substitute
(<user(s)>). In fact, (ALL) ALL entry won't work and will generate an
error.

Sergey

More information about the LDAP-interop mailing list