From: Kevin P. Fleming (suse-lists_at_kpfleming.us)
Date: Wed May 18 2005 - 17:14:27 CEST
Message-ID: <428B5BD3.4020004@kpfleming.us> Date: Wed, 18 May 2005 08:14:27 -0700 From: "Kevin P. Fleming" <suse-lists@kpfleming.us> Subject: [suse-sles-e] Winbind authenticated users cannot sudo?
I have a few SLES 9 servers set up recently... I'm very happy with them :-)
However, I've run into one problem I can't find a simple solution for: a
couple of these servers are joined to Windows domains, and allow the
Windows users to log in as Linux users on the server itself (for
administration, mostly). This was easy to set up using the 'Samba
Client' module in YaST2.
Once I added 'pam_mkhomedir.so' to /etc/pam.d/xdm, my Windows users have
no trouble logging in, and an appropriate Linux homedir is created the
first time they do; so far so good.
However, once they are logged in, they cannot use 'sudo'; it complains
that that they are not listed in /etc/sudoers. However, _no_ users are
listed there, I'm using the default config that allows any user who
knows root's password to be able to sudo. I suspect this is happening
because sudo cannot 'see' the users being provided by Winbind, but
/etc/pam.d/sudo shows it using pam_unix2, and pam_unix2 is properly
configured to call pam_winbind.
Any ideas what I can do here?
---------------------------------------------------------------------
To unsubscribe, e-mail: suse-sles-e-unsubscribe@suse.com
For additional commands, e-mail: suse-sles-e-help@suse.com
This archive was generated by hypermail 2.1.7 : Wed May 18 2005 - 17:14:49 CEST