summaryrefslogtreecommitdiffstats
path: root/install
diff options
context:
space:
mode:
authorDmitri Pal <dpal@redhat.com>2010-09-24 07:45:11 -0400
committerRob Crittenden <rcritten@redhat.com>2010-09-24 16:11:34 -0400
commit59d46abcd5fe9b5e83d4ae962a3afe8bf6bd8e87 (patch)
tree60431a497938092d78e889113b1417f32c8cb1cd /install
parent5b3d0f568a0015370438e3f589cad393f5c48c91 (diff)
downloadfreeipa-59d46abcd5fe9b5e83d4ae962a3afe8bf6bd8e87.tar.gz
freeipa-59d46abcd5fe9b5e83d4ae962a3afe8bf6bd8e87.tar.xz
freeipa-59d46abcd5fe9b5e83d4ae962a3afe8bf6bd8e87.zip
Addressing issues found in schema
* Matching rule was incorrect * Added memberOf attribute to the command * Switched from groupOfUniqueNames to groupOfNames
Diffstat (limited to 'install')
-rw-r--r--install/share/60sudo.ldif6
1 files changed, 3 insertions, 3 deletions
diff --git a/install/share/60sudo.ldif b/install/share/60sudo.ldif
index d8db306f2..0f3ac03ac 100644
--- a/install/share/60sudo.ldif
+++ b/install/share/60sudo.ldif
@@ -26,10 +26,10 @@ attributeTypes: (2.16.840.1.113730.3.8.7.9 NAME 'ipaSudoRunAsExtGroup' DESC 'Mul
## Attribute to express category of group identities that the command can be run under
attributeTypes: (2.16.840.1.113730.3.8.7.10 NAME 'ipaSudoRunAsGroupCategory' DESC 'Additional classification for groups' SUP userCategory X-ORIGIN 'IPA v2' )
## Attribute to store host mask
-attributeTypes: (2.16.840.1.113730.3.8.7.11 NAME 'hostMask' DESC 'IP mask to identify a subnet.' EQUALITY caseIgnoreIA5Match ORDERING caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'IPA v2' )
+attributeTypes: (2.16.840.1.113730.3.8.7.11 NAME 'hostMask' DESC 'IP mask to identify a subnet.' EQUALITY caseIgnoreMatch ORDERING caseIgnoreMatch SUBSTR caseIgnoreSubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.15 X-ORIGIN 'IPA v2' )
## Object class for SUDO rules
objectClasses: (2.16.840.1.113730.3.8.8.1 NAME 'ipaSudoRule' SUP ipaAssociation STRUCTURAL MUST accessRuleType MAY ( externalUser $ externalHost $ hostMask $ memberCmd $ cmdCategory $ ipaSudoOpt $ ipaSudoRunAs $ ipaSudoRunAsExtUser $ ipaSudoRunAsUserCategory $ ipaSudoRunAsGroup $ ipaSudoRunAsExtGroup $ ipaSudoRunAsGroupCategory ) X-ORIGIN 'IPA v2' )
## Object class for SUDO commands
-objectClasses: (2.16.840.1.113730.3.8.8.2 NAME 'ipaSudoCmd' DESC 'IPA object class for SUDO command' STRUCTURAL MUST ( ipaUniqueID $ cn ) MAY ( description ) X-ORIGIN 'IPA v2' )
+objectClasses: (2.16.840.1.113730.3.8.8.2 NAME 'ipaSudoCmd' DESC 'IPA object class for SUDO command' STRUCTURAL MUST ( ipaUniqueID $ cn ) MAY ( memberOf $ description ) X-ORIGIN 'IPA v2' )
## Object class for groups of the SUDO commands
-objectClasses: (2.16.840.1.113730.3.8.8.3 NAME 'ipaSudoCmdGrp' DESC 'IPA object class to store groups of SUDO commands' SUP groupOfUniqueNames MUST ( ipaUniqueID ) STRUCTURAL X-ORIGIN 'IPA v2' )
+objectClasses: (2.16.840.1.113730.3.8.8.3 NAME 'ipaSudoCmdGrp' DESC 'IPA object class to store groups of SUDO commands' SUP groupOfNames MUST ( ipaUniqueID ) STRUCTURAL X-ORIGIN 'IPA v2' )