diff options
| author | Martin Kosek <mkosek@redhat.com> | 2014-01-15 09:31:37 +0100 |
|---|---|---|
| committer | Martin Kosek <mkosek@redhat.com> | 2014-01-15 11:01:36 +0100 |
| commit | 7cc8c3b14b8155fe8d688ea93fd1cf375b2f7f1e (patch) | |
| tree | 444aed5e6a3aaf3d88331717de5482fdc7026338 | |
| parent | 48ffe39b6b80c4f22ae4e11a85cc3d3fd46e0232 (diff) | |
| download | freeipa-7cc8c3b14b8155fe8d688ea93fd1cf375b2f7f1e.tar.gz freeipa-7cc8c3b14b8155fe8d688ea93fd1cf375b2f7f1e.tar.xz freeipa-7cc8c3b14b8155fe8d688ea93fd1cf375b2f7f1e.zip | |
Add missing example to sudorule
https://fedorahosted.org/freeipa/ticket/4090
| -rw-r--r-- | ipalib/plugins/sudorule.py | 21 |
1 files changed, 20 insertions, 1 deletions
diff --git a/ipalib/plugins/sudorule.py b/ipalib/plugins/sudorule.py index a89941cb..9644aafa 100644 --- a/ipalib/plugins/sudorule.py +++ b/ipalib/plugins/sudorule.py @@ -52,7 +52,26 @@ LDAPTLS_CACERT=/etc/ipa/ca.crt /usr/bin/ldappasswd -S -W \ -h ipa.example.com -ZZ -D "cn=Directory Manager" \ uid=sudo,cn=sysaccounts,cn=etc,dc=example,dc=com -For more information, see the FreeIPA Documentation to Sudo. +EXAMPLES: + + Create a new rule: + ipa sudorule-add readfiles + + Add sudo command object and add it as allowed command in the rule: + ipa sudocmd-add /usr/bin/less + ipa sudorule-add-allow-command readfiles --sudocmds /usr/bin/less + + Add a host to the rule: + ipa sudorule-add-host readfiles --hosts server.example.com + + Add a user to the rule: + ipa sudorule-add-user readfiles --users jsmith + + Add a special Sudo rule for default Sudo server configuration: + ipa sudorule-add defaults + + Set a default Sudo option: + ipa sudorule-add-option defaults --sudooption '!authenticate' """) topic = ('sudo', _('Commands for controlling sudo configuration')) |