diff options
author | Martin Kosek <mkosek@redhat.com> | 2014-01-15 09:31:37 +0100 |
---|---|---|
committer | Martin Kosek <mkosek@redhat.com> | 2014-01-15 11:01:44 +0100 |
commit | c823a997e7a2879f8d96fc04bf7182986655a8a2 (patch) | |
tree | 4fe0acadb6d4b5d5e9e32227912a0c30900e1248 | |
parent | 66ac0778a2f11ccc5151518d1ac859776caa845f (diff) | |
download | freeipa.git-c823a997e7a2879f8d96fc04bf7182986655a8a2.tar.gz freeipa.git-c823a997e7a2879f8d96fc04bf7182986655a8a2.tar.xz freeipa.git-c823a997e7a2879f8d96fc04bf7182986655a8a2.zip |
Add missing example to sudorule
https://fedorahosted.org/freeipa/ticket/4090
-rw-r--r-- | ipalib/plugins/sudorule.py | 21 |
1 files changed, 20 insertions, 1 deletions
diff --git a/ipalib/plugins/sudorule.py b/ipalib/plugins/sudorule.py index a89941cb..9644aafa 100644 --- a/ipalib/plugins/sudorule.py +++ b/ipalib/plugins/sudorule.py @@ -52,7 +52,26 @@ LDAPTLS_CACERT=/etc/ipa/ca.crt /usr/bin/ldappasswd -S -W \ -h ipa.example.com -ZZ -D "cn=Directory Manager" \ uid=sudo,cn=sysaccounts,cn=etc,dc=example,dc=com -For more information, see the FreeIPA Documentation to Sudo. +EXAMPLES: + + Create a new rule: + ipa sudorule-add readfiles + + Add sudo command object and add it as allowed command in the rule: + ipa sudocmd-add /usr/bin/less + ipa sudorule-add-allow-command readfiles --sudocmds /usr/bin/less + + Add a host to the rule: + ipa sudorule-add-host readfiles --hosts server.example.com + + Add a user to the rule: + ipa sudorule-add-user readfiles --users jsmith + + Add a special Sudo rule for default Sudo server configuration: + ipa sudorule-add defaults + + Set a default Sudo option: + ipa sudorule-add-option defaults --sudooption '!authenticate' """) topic = ('sudo', _('Commands for controlling sudo configuration')) |