Mageia Bugzilla – Attachment 9403 Details for
Bug 21076
sudo ldap schema is old and does not include sudoOrder or sudoRunAsUser (and others).
Home
|
New
|
Browse
|
Search
|
[?]
|
Reports
|
Requests
|
Help
|
Log In
[x]
|
New Account
|
Forgot Password
sudo openldap schema
sudo.schema (text/plain), 2.35 KB, created by
Rod Emerson
on 2017-06-12 11:00:54 CEST
(
hide
)
Description:
sudo openldap schema
Filename:
MIME Type:
Creator:
Rod Emerson
Created:
2017-06-12 11:00:54 CEST
Size:
2.35 KB
patch
obsolete
># ># OpenLDAP schema file for Sudo ># Save as /etc/openldap/schema/sudo.schema ># > >attributetype ( 1.3.6.1.4.1.15953.9.1.1 > NAME 'sudoUser' > DESC 'User(s) who may run sudo' > EQUALITY caseExactIA5Match > SUBSTR caseExactIA5SubstringsMatch > SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) > >attributetype ( 1.3.6.1.4.1.15953.9.1.2 > NAME 'sudoHost' > DESC 'Host(s) who may run sudo' > EQUALITY caseExactIA5Match > SUBSTR caseExactIA5SubstringsMatch > SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) > >attributetype ( 1.3.6.1.4.1.15953.9.1.3 > NAME 'sudoCommand' > DESC 'Command(s) to be executed by sudo' > EQUALITY caseExactIA5Match > SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) > >attributetype ( 1.3.6.1.4.1.15953.9.1.4 > NAME 'sudoRunAs' > DESC 'User(s) impersonated by sudo (deprecated)' > EQUALITY caseExactIA5Match > SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) > >attributetype ( 1.3.6.1.4.1.15953.9.1.5 > NAME 'sudoOption' > DESC 'Options(s) followed by sudo' > EQUALITY caseExactIA5Match > SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) > >attributetype ( 1.3.6.1.4.1.15953.9.1.6 > NAME 'sudoRunAsUser' > DESC 'User(s) impersonated by sudo' > EQUALITY caseExactIA5Match > SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) > >attributetype ( 1.3.6.1.4.1.15953.9.1.7 > NAME 'sudoRunAsGroup' > DESC 'Group(s) impersonated by sudo' > EQUALITY caseExactIA5Match > SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) > >attributetype ( 1.3.6.1.4.1.15953.9.1.8 > NAME 'sudoNotBefore' > DESC 'Start of time interval for which the entry is valid' > EQUALITY generalizedTimeMatch > ORDERING generalizedTimeOrderingMatch > SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 ) > >attributetype ( 1.3.6.1.4.1.15953.9.1.9 > NAME 'sudoNotAfter' > DESC 'End of time interval for which the entry is valid' > EQUALITY generalizedTimeMatch > ORDERING generalizedTimeOrderingMatch > SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 ) > >attributeTypes ( 1.3.6.1.4.1.15953.9.1.10 > NAME 'sudoOrder' > DESC 'an integer to order the sudoRole entries' > EQUALITY integerMatch > ORDERING integerOrderingMatch > SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 ) > >objectclass ( 1.3.6.1.4.1.15953.9.2.1 NAME 'sudoRole' SUP top STRUCTURAL > DESC 'Sudoer Entries' > MUST ( cn ) > MAY ( sudoUser $ sudoHost $ sudoCommand $ sudoRunAs $ sudoRunAsUser $ sudoRunAsGroup $ sudoOption $ sudoOrder $ sudoNotBefore $ sudoNotAfter $ > description ) > )
# # OpenLDAP schema file for Sudo # Save as /etc/openldap/schema/sudo.schema # attributetype ( 1.3.6.1.4.1.15953.9.1.1 NAME 'sudoUser' DESC 'User(s) who may run sudo' EQUALITY caseExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) attributetype ( 1.3.6.1.4.1.15953.9.1.2 NAME 'sudoHost' DESC 'Host(s) who may run sudo' EQUALITY caseExactIA5Match SUBSTR caseExactIA5SubstringsMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) attributetype ( 1.3.6.1.4.1.15953.9.1.3 NAME 'sudoCommand' DESC 'Command(s) to be executed by sudo' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) attributetype ( 1.3.6.1.4.1.15953.9.1.4 NAME 'sudoRunAs' DESC 'User(s) impersonated by sudo (deprecated)' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) attributetype ( 1.3.6.1.4.1.15953.9.1.5 NAME 'sudoOption' DESC 'Options(s) followed by sudo' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) attributetype ( 1.3.6.1.4.1.15953.9.1.6 NAME 'sudoRunAsUser' DESC 'User(s) impersonated by sudo' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) attributetype ( 1.3.6.1.4.1.15953.9.1.7 NAME 'sudoRunAsGroup' DESC 'Group(s) impersonated by sudo' EQUALITY caseExactIA5Match SYNTAX 1.3.6.1.4.1.1466.115.121.1.26 ) attributetype ( 1.3.6.1.4.1.15953.9.1.8 NAME 'sudoNotBefore' DESC 'Start of time interval for which the entry is valid' EQUALITY generalizedTimeMatch ORDERING generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 ) attributetype ( 1.3.6.1.4.1.15953.9.1.9 NAME 'sudoNotAfter' DESC 'End of time interval for which the entry is valid' EQUALITY generalizedTimeMatch ORDERING generalizedTimeOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.24 ) attributeTypes ( 1.3.6.1.4.1.15953.9.1.10 NAME 'sudoOrder' DESC 'an integer to order the sudoRole entries' EQUALITY integerMatch ORDERING integerOrderingMatch SYNTAX 1.3.6.1.4.1.1466.115.121.1.27 ) objectclass ( 1.3.6.1.4.1.15953.9.2.1 NAME 'sudoRole' SUP top STRUCTURAL DESC 'Sudoer Entries' MUST ( cn ) MAY ( sudoUser $ sudoHost $ sudoCommand $ sudoRunAs $ sudoRunAsUser $ sudoRunAsGroup $ sudoOption $ sudoOrder $ sudoNotBefore $ sudoNotAfter $ description ) )
View Attachment As Raw
Actions:
View
Attachments on
bug 21076
:
9402
| 9403