Re: Sudo issues

amipankaj · ‎01-29-2009

Hello Experts,

i have one problem with sudoers file. i have three user john, paull, vrao i wanted these users can become user mark. for that, i had added following lines in sudoers file.

User_Alias SABADEVS = john, paul, vrao
Runas_Alias SABA = mark
SABADEVS ALL = (SABA) NOPASSWD:ALL

but its not working....asking for password while trying to switch to user mark from these three users.

thanks in adance.
Roy

Frank de Vries · ‎01-29-2009

I see you use :ALL
but to change user you need
"su - mark "

Did you try to narrow just for su ?

Cmnd_Alias SU = /usr/bin/su
SABADEVS ALL = (SABA) NOPASSWD:SU

Or alternatively does it work just
plain SU (for everyone to start)

User_Alias SABADEVS = john, paul, vrao
Cmnd_Alias SU = /usr/bin/su
SABADEVS ALL = (SABA) NOPASSWD:SU

Look before you leap

killer1 · ‎01-29-2009

Hello Roy

Please try the following syntax.

User_Alias SABADEVS = john, paul, vrao
SABADEVS ALL = NOPASSWD:/usr/bin/su - mark

Regards

Matti_Kurkela · ‎01-29-2009

If your users are using the "sudo su - mark" construct, they're effectively asking sudo to allow them to become root so that su can switch them to mark without asking for a password. Your sudo configuration does not allow that.

With the rules you have specified, your users should use "sudo -u mark -i". It achieves the same result as "sudo su - mark", but in a different way.

MK

MK

amipankaj · ‎01-29-2009

Thanks guys....its working now.

Categories

Company

Local Language

Forums

Discussions

Forums

Discussions

Discussions

Forums

Discussions

Forums

Discussions

Forums

Forums

Discussions

Forums

Discussions

Forums

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Discussion Boards

Community

Resources

Other HPE Sites

Discussions

Forums

Blogs

Re: Sudo issues

Sudo issues

Re: Sudo issues

Re: Sudo issues

Re: Sudo issues

Re: Sudo issues