On 20/09/13 08:36, Pavel Březina wrote:
no, it is not desirable. SSSD periodically downloads all rules that
are applicable to the machine, and then filters them by user when sudo
request is performed. In other words: filtering by sudoUser is there,
only on other place (sssd_sudo process).
Hi, from reading the above, I assume that the sudo rules are cached with
everything else in /var/lib/sss/db/cache_example.com.ldb. But the only
referral to sudo in the db is:
I take it this is the base where the sudo rules should be stored, but
there are none.