search for: sudouser

Displaying 20 results from an estimated 23 matches for "sudouser".

2019 Apr 12
3
Sudo rules in samba with winbind
Hello All, I am currently changing my samba linux clients (Debian) from sssd binding to winbind. With sssd I had all sudo rules within the samba active directory. The configuration was based on: https://lists.samba.org/archive/samba/2016-April/199402.html Is there some guideline like the one mentioned available/has someone already experience with this for winbind based clients? Within the
2014 Jan 19
1
sudo (+ldap+kerberos) not accepting password
...main,dc=com sudo: ldap sudoOption: 'env_keep+=SSH_AGENT_PID' sudo: ldap sudoOption: 'env_keep+=SSH_AUTH_SOCK' sudo: ldap sudoOption: 'env_keep+=SVN_SSH' sudo: ldap sudoOption: 'env_reset' sudo: ldap sudoOption: 'ignore_local_sudoers' sudo: ldap search '(|(sudoUser=raub)(sudoUser=%raub)(sudoUser=%chinbeards)(sudoUser=ALL))' sudo: ldap search 'sudoUser=+*' sudo: found:cn=defaults,ou=SUDOers,dc=domain,dc=com sudo: ldap sudoUser netgroup '+chinbeards' ... MATCH! sudo: ldap sudoHost 'ALL' ... MATCH! sudo: ldap sudoCommand 'ALL'...
2010 Jan 21
0
Samba/Winbind 3.4.4 on AIX 5.3 TL 10 does not retrieve ANY User's Secondary Groups
...ap sudoOption: 'syslog_goodpri=alert' sudo: ldap sudoOption: '!env_reset' sudo: ldap sudoOption: 'log_year' sudo: ldap sudoOption: 'log_host' sudo: ldap sudoOption: 'insults' sudo: ldap sudoOption: 'logfile=/var/log/sudo.log' sudo: ldap search '(|(sudoUser=test)(sudoUser=%Domain Users)(sudoUser=%ghba8)(sudoUser=%unix)(sudoUser=%CERTSVC_DCOM_ACCESS)(sudoUser=ALL))' sudo: found:CN=ghba8,OU=SUDOers,DC=peps,DC=local <-- here we can see that the user has been found into the sec. group ghba8 <-- here below there are the matching sudo author...
2010 Oct 07
1
ldif invalid per syntax
...============================== dn: cn=defaults,ou=sudoers,ou=Services,dc=summitnjhome,dc=com objectClass: top objectClass: sudoRole cn: defaults description: Default sudoOption's go here dn: cn=root,ou=sudoers,ou=Services,dc=summitnjhome,dc=com objectClass: top objectClass: sudoRole cn: root sudoUser: root sudoHost: ALL sudoRunAsUser: ALL sudoCommand: ALL dn: cn=%wheel,ou=sudoers,ou=Services,dc=summitnjhome,dc=com objectClass: top objectClass: sudoRole cn: %wheel sudoUser: %wheel sudoHost: ALL sudoRunAsUser: ALL sudoCommand: ALL sudoOption: !authenticate dn: cn=%summitnjops,ou=sudoers,ou=Serv...
2014 Aug 13
1
howto install sudo schema
...i add it to samba? The following example allows users in group wheel to run any command on any host via sudo, dc=example,dc=com will be changed to refer to my domain. $ cat sudo_user dn: cn=%wheel,ou=SUDOers,dc=example,dc=com objectClass: top objectClass: sudoRole cn: %wheel sudoUser: %wheel sudoHost: ALL sudoCommand: ALL ldbadd -H /etc/samba/private/sam.ldb sudo_user \ --option="dsdb:schema update allowed"=true and how do i index the 'sudoUser' attribute? all corrections welcome. Shadrock
2019 Sep 03
3
dsync and altpath on shared storage.
...dovecot.org> wrote: ... >> Is there anyway for dsync to avoid moving Gigabytes of data for could >> just be "moved" by moving the mount? > > > Not tested but you can probably do something like this in the target server: > > doveadm backup -u victim -R ssh sudouser at old-server "sudo doveadm dsync-server -o mail_location=sdbox:/location-to-your-sdbox/ -u victim" > > just leave ALT storage path from the setting. I'll have to test this... but my initial guess would be that doveadm would then think the mails has disappeared. Would it then...
2014 Jul 02
1
sssd_sudo search results different from command line ldapsearch
...=teemu,DC=local objectClass: top objectClass: sudoRole cn: reima instanceType: 4 whenCreated: 20140625194650.0Z whenChanged: 20140625194650.0Z uSNCreated: 3799 uSNChanged: 3799 name: reima objectGUID:: U1paZdVOSke2zmInSenFTg== objectCategory: CN=sudoRole,CN=Schema,CN=Configuration,DC=teemu,DC=local sudoUser: reima sudoHost: ALL sudoCommand: ALL distinguishedName: CN=reima,OU=SUDOers,DC=teemu,DC=local # SUDOers, teemu.local dn: OU=SUDOers,DC=teemu,DC=local objectClass: top objectClass: organizationalUnit ou: SUDOers instanceType: 4 whenCreated: 20140625194301.0Z whenChanged: 20140625194301.0Z uSNCreat...
2014 Jul 03
1
How to manipulate ldap access rights on Samba 4?
...=teemu,DC=local objectClass: top objectClass: sudoRole cn: reima instanceType: 4 whenCreated: 20140625194650.0Z whenChanged: 20140625194650.0Z uSNCreated: 3799 uSNChanged: 3799 name: reima objectGUID:: U1paZdVOSke2zmInSenFTg== objectCategory: CN=sudoRole,CN=Schema,CN=Configuration,DC=teemu,DC=local sudoUser: reima sudoHost: ALL sudoCommand: ALL distinguishedName: CN=reima,OU=SUDOers,DC=teemu,DC=local # SUDOers, teemu.local dn: OU=SUDOers,DC=teemu,DC=local objectClass: top objectClass: organizationalUnit ou: SUDOers instanceType: 4 whenCreated: 20140625194301.0Z whenChanged: 20140625194301.0Z uSNCreat...
2018 Dec 29
4
Migration
Hi! I'm currently running an small imap-server on Dovecot 2.2.4 but will retire that server. I've set up an new server with Dovecot 2.3.4 and will migrate the mailboxes (maildir-format) from the old to the new server. I'm planning to restructure the accounts a bit when migrating so I need to move them one by one. Its only a few so thats not a big issue. Both servers are using
2019 Oct 01
2
Migration
...nd if it should be run as user vmail or root. >> >> Would be greatful for any tips, hints, links or similiar. > > > Once you have the new server set up, you can use dsync over ssh to sync the mailboxes with something like: > > doveadm backup -u user at newserver -R ssh sudouser at oldserver sudo /usr/bin/doveadm dsync-server -u user at oldserver > > needs to be run as root on new server. Also ssh access with keys and without password is recommended. I used to run `doveadm backup` on the new server with glusterfs and at the middle of the sync the glusterfs is gone....
2019 Sep 02
2
dsync and altpath on shared storage.
Hi, I was wondering... If one had mdbox ALT path set to a shared storage mount (say, on NFS) and one wanted to move a mailbox to a different host... I guess it in principle wouldn't be necessary to copy all the ALT storage through dsync, when the volume could just be mounted on the new host. Is there anyway for dsync to avoid moving Gigabytes of data for could just be "moved" by
2011 Oct 06
2
Samba 3.4.7 with LDAP authentication
...pd[450]: <= bdb_equality_candidates: (sambaSID) not indexed Oct 6 10:04:32 ldap1 slapd[450]: <= bdb_equality_candidates: (sambaSID) not indexed Oct 6 10:05:18 ldap1 slapd[450]: <= bdb_equality_candidates: (cn) not indexed Oct 6 10:05:18 ldap1 slapd[450]: <= bdb_substring_candidates: (sudoUser) not indexed Oct 6 10:05:58 ldap1 slapd[450]: <= bdb_equality_candidates: (cn) not indexed Oct 6 10:05:58 ldap1 slapd[450]: <= bdb_substring_candidates: (sudoUser) not indexed Oct 6 10:05:58 ldap1 slapd[450]: <= bdb_equality_candidates: (sambaDomainName) not indexed Oct 6 10:05:58 ldap...
2018 Dec 30
3
Migration
...t task and if it should be run as user vmail or root. >> >> Would be greatful for any tips, hints, links or similiar. > > Once you have the new server set up, you can use dsync over ssh to sync the mailboxes with something like: > > doveadm backup -u user at newserver -R ssh sudouser at oldserver sudo /usr/bin/doveadm dsync-server -u user at oldserver > > needs to be run as root on new server. Also ssh access with keys and without password is recommended. > > Sami > >
2019 May 14
1
Samba4 changing a user's password from linux workstation
...DOMAIN\groupname…  just groupname to >> show.   I don’t remember why this was causing me problems… just that >> this was the main reason. > > You mean something like this: > > getent group Domain\ Users > domain > users:x:10000:testuser,user27,saducuser,testuser2,sudouser,user26,swanadmin,ktestuser,testuser1,example$,kte..... > > > If it didn't work for you, then your smb.conf was mis-configured. > >> >> At the time, I found that the documentation for integrating AD with >> Linux was best documented… in particular at RedHat: &g...
2019 May 14
2
Samba4 changing a user's password from linux workstation
Hello Rowland, We’ve been using SSSD with Acitve Directory for a few years now… It’s been solid for us. Our Linux clients use the AD-Kerberos via SSSD for secure NFS4 mounts with POSIX attributes defined in AD (uidNumber, gidNumber, unixHomeDirectory, loginShell). Before putting into production, I tested using Winbind and could not get it to do what I wanted. If I remember correctly, I had
2018 Dec 30
0
Migration
...at I need to perform that task and if it should be run as user vmail or root. > > Would be greatful for any tips, hints, links or similiar. Once you have the new server set up, you can use dsync over ssh to sync the mailboxes with something like: doveadm backup -u user at newserver -R ssh sudouser at oldserver sudo /usr/bin/doveadm dsync-server -u user at oldserver needs to be run as root on new server. Also ssh access with keys and without password is recommended. Sami
2018 Dec 31
0
Migration
...user vmail or root. >>> >>> Would be greatful for any tips, hints, links or similiar. >> >> Once you have the new server set up, you can use dsync over ssh to >> sync the mailboxes with something like: >> >> doveadm backup -u user at newserver -R ssh sudouser at oldserver sudo >> /usr/bin/doveadm dsync-server -u user at oldserver >> >> needs to be run as root on new server. Also ssh access with keys and >> without password is recommended. >> >> Sami >> >>
2019 Sep 02
0
dsync and altpath on shared storage.
...when the volume could just be mounted on the new host. > > Is there anyway for dsync to avoid moving Gigabytes of data for could > just be "moved" by moving the mount? Not tested but you can probably do something like this in the target server: doveadm backup -u victim -R ssh sudouser at old-server "sudo doveadm dsync-server -o mail_location=sdbox:/location-to-your-sdbox/ -u victim" just leave ALT storage path from the setting. Sami
2019 Sep 03
0
dsync and altpath on shared storage.
...>>> Is there anyway for dsync to avoid moving Gigabytes of data for could >>> just be "moved" by moving the mount? >> >> >> Not tested but you can probably do something like this in the target server: >> >> doveadm backup -u victim -R ssh sudouser at old-server "sudo doveadm dsync-server -o mail_location=sdbox:/location-to-your-sdbox/ -u victim" >> >> just leave ALT storage path from the setting. > > > I'll have to test this... but my initial guess would be that doveadm > would then think the mails ha...
2019 Oct 01
0
Migration
...r vmail or root. >>> >>> Would be greatful for any tips, hints, links or similiar. >> >> >> Once you have the new server set up, you can use dsync over ssh to sync the mailboxes with something like: >> >> doveadm backup -u user at newserver -R ssh sudouser at oldserver sudo /usr/bin/doveadm dsync-server -u user at oldserver >> >> needs to be run as root on new server. Also ssh access with keys and without password is recommended. > > I used to run `doveadm backup` on the new server with glusterfs and at the > middle of the sync...