Bugzilla – Bug 811
Lack of documentation for Defaults associated to a User_Alias or a Cmnd_Alias
Last modified: 2018-05-01 10:20:10 MDT
Current LDAP documentation https://www.sudo.ws/man/1.8.21/sudoers.ldap.man.html lack of documentation for Defaults associated to a User_Alias or a Cmnd_Alias Examples are taken from https://www.sudo.ws/man/1.8.21/sudoers.man.html#EXAMPLES for consistency. User_Alias Defaults: "Defaults:millert !authenticate" Can be translated in # millert, SUDOers, courtesan.com dn: cn=millert,ou=SUDOers,dc=courtesan,dc=com objectClass: top objectClass: sudoRole cn: millert sudoUser: millert sudoRunAsUser: ALL sudoRunAsGroup: ALL sudoHost: ALL sudoOption: !authenticate Cmnd_Alias Default: "Cmnd_Alias PAGERS = /usr/bin/more, /usr/bin/pg, /usr/bin/less Defaults!PAGERS noexec" Cannot be currently translated. Documentation should be fixed in order to show up what can be accomplished and what can not.
In sudo 1.8,23 the sudoers.ldap manual will include a section on converting from file-based sudoers to LDAP-based which should address this.
Sudo 1.8.23 has a "Converting between file-based and LDAP sudoers" sub-section in the sudoers.ldap manual.