diff options
Diffstat (limited to 'sudoers/sudoers_example_policy.xml')
-rw-r--r-- | sudoers/sudoers_example_policy.xml | 29 |
1 files changed, 29 insertions, 0 deletions
diff --git a/sudoers/sudoers_example_policy.xml b/sudoers/sudoers_example_policy.xml new file mode 100644 index 0000000..10d097a --- /dev/null +++ b/sudoers/sudoers_example_policy.xml @@ -0,0 +1,29 @@ +<?xml version="1.0" encoding="UTF-8"?> +<ipa xmlns="http://freeipa.org/xml/rng/sudo/sudoers/1.0"> +<metadata> + <name>simple sudoers example, allowing mount/umount of a CD-ROM</name> + <author>sbose@redhat.com</author> + <version>0.7071</version> + <RNGfile>sudoers.rng</RNGfile> + <XSLTfile>sudoers.xslt</XSLTfile> +</metadata> + +<ipaconfig> +<sudoers> + <subject><name>abc</name><type>netgroup</type></subject> + <command><path>/sbin/umount /CDROM</path><tag>NOPASSWD</tag><runas>root</runas></command> + <option><authenticate>on</authenticate></option> + <command><path>/sbin/mount -o nosuid,nodev /dev/cd0a /CDROM</path></command> +</sudoers> +<sudoers> + <subject><name>def</name><type>posixGroup</type></subject> + <option><authenticate>off</authenticate></option> +</sudoers> +<sudoers> + <subject><name>EWLFKFKJKFwe</name><type>ALL</type></subject> + <command><path>/sbin/shutdown -r now</path></command> + <option><lecture>always</lecture></option> +</sudoers> +</ipaconfig> + +</ipa> |