VERSION = 1.7.0
DISTFILES = $(SRCS) $(HDRS) ChangeLog HISTORY INSTALL INSTALL.configure \
- LICENSE Makefile.in PORTING README README.LDAP \
- TROUBLESHOOTING UPGRADE WHATSNEW aclocal.m4 acsite.m4 aixcrypt.exp \
- config.guess config.h.in config.sub configure configure.in \
- def_data.in indent.pro install-sh ltmain.sh mkdefaults \
- mkinstalldirs pathnames.h.in sample.pam sample.syslog.conf \
- sample.sudoers schema.OpenLDAP schema.iPlanet sudo.cat \
- sudo.man.in sudo.pod sudo.psf sudo_usage.h.in sudoers sudoers.cat \
+ LICENSE Makefile.in PORTING README README.LDAP TROUBLESHOOTING \
+ UPGRADE WHATSNEW aclocal.m4 acsite.m4 aixcrypt.exp config.guess \
+ config.h.in config.sub configure configure.in def_data.in \
+ indent.pro install-sh ltmain.sh mkdefaults mkinstalldirs \
+ pathnames.h.in sample.pam sample.syslog.conf sample.sudoers \
+ schema.ActiveDirectory schema.OpenLDAP schema.iPlanet sudo.cat \
+ sudo.man.in sudo.pod sudo.psf sudo_usage.h.in sudoers sudoers.cat \
sudoers.man.in sudoers.pod sudoers.ldap.cat sudoers.ldap.man.in \
sudoers.ldap.pod sudoers2ldif visudo.cat visudo.man.in visudo.pod \
auth/API
serviceSearchDescriptor: sudoers: ou=sudoers,dc=example,dc=com
+If using an Active Directory server, copy schema.ActiveDirectory
+to your Windows domain controller and run the following command:
+
+ ldifde -i -f schema.ActiveDirectory -c dc=X dc=example,dc=com
+
Importing /etc/sudoers into LDAP
================================
Importing sudoers is a two-step process.
-1.7.0 May 2, 2008 1
+1.7.0 May 10, 2008 1
-1.7.0 May 2, 2008 2
+1.7.0 May 10, 2008 2
-1.7.0 May 2, 2008 3
+1.7.0 May 10, 2008 3
on your LDAP server. In addition, be sure to index the 'sudoUser'
attribute.
- Two versions of the schema, one for OpenLDAP servers (_\bs_\bc_\bh_\be_\bm_\ba_\b._\bO_\bp_\be_\bn_\bL_\bD_\bA_\bP)
- and another for Netscape-derived servers (_\bs_\bc_\bh_\be_\bm_\ba_\b._\bi_\bP_\bl_\ba_\bn_\be_\bt), may be found
- in the s\bsu\bud\bdo\bo distribution.
+ Three versions of the schema: one for OpenLDAP servers (_\bs_\bc_\bh_\be_\bm_\ba_\b._\bO_\bp_\be_\bn_\bL_\b-
+ _\bD_\bA_\bP), one for Netscape-derived servers (_\bs_\bc_\bh_\be_\bm_\ba_\b._\bi_\bP_\bl_\ba_\bn_\be_\bt), and one for
+ Microsoft Active Directory (_\bs_\bc_\bh_\be_\bm_\ba_\b._\bA_\bc_\bt_\bi_\bv_\be_\bD_\bi_\br_\be_\bc_\bt_\bo_\br_\by) may be found in the
+ s\bsu\bud\bdo\bo distribution.
The schema for s\bsu\bud\bdo\bo in OpenLDAP form is included in the EXAMPLES sec-
tion.
Also note that on systems using the OpenLDAP libraries, default values
specified in _\b/_\be_\bt_\bc_\b/_\bo_\bp_\be_\bn_\bl_\bd_\ba_\bp_\b/_\bl_\bd_\ba_\bp_\b._\bc_\bo_\bn_\bf or the user's _\b._\bl_\bd_\ba_\bp_\br_\bc files are
- not used.
-1.7.0 May 2, 2008 4
+1.7.0 May 10, 2008 4
SUDOERS.LDAP(4) MAINTENANCE COMMANDS SUDOERS.LDAP(4)
+ not used.
+
Only those options explicitly listed in _\b/_\be_\bt_\bc_\b/_\bl_\bd_\ba_\bp_\b._\bc_\bo_\bn_\bf that are sup-
ported by s\bsu\bud\bdo\bo are honored. Configuration options are listed below in
upper case but are parsed in a case-independent manner.
-
-
-1.7.0 May 2, 2008 5
+1.7.0 May 10, 2008 5
-1.7.0 May 2, 2008 6
+1.7.0 May 10, 2008 6
-1.7.0 May 2, 2008 7
+1.7.0 May 10, 2008 7
-1.7.0 May 2, 2008 8
+1.7.0 May 10, 2008 8
-1.7.0 May 2, 2008 9
+1.7.0 May 10, 2008 9
-1.7.0 May 2, 2008 10
+1.7.0 May 10, 2008 10
-1.7.0 May 2, 2008 11
+1.7.0 May 10, 2008 11
-1.7.0 May 2, 2008 12
+1.7.0 May 10, 2008 12
.\" ========================================================================
.\"
.IX Title "SUDOERS.LDAP @mansectform@"
-.TH SUDOERS.LDAP @mansectform@ "May 2, 2008" "1.7.0" "MAINTENANCE COMMANDS"
+.TH SUDOERS.LDAP @mansectform@ "May 10, 2008" "1.7.0" "MAINTENANCE COMMANDS"
.SH "NAME"
sudoers.ldap \- sudo LDAP configuration
.SH "DESCRIPTION"
installed on your \s-1LDAP\s0 server. In addition, be sure to index the
\&'sudoUser' attribute.
.PP
-Two versions of the schema, one for OpenLDAP servers (\fIschema.OpenLDAP\fR)
-and another for Netscape-derived servers (\fIschema.iPlanet\fR), may
+Three versions of the schema: one for OpenLDAP servers (\fIschema.OpenLDAP\fR),
+one for Netscape-derived servers (\fIschema.iPlanet\fR), and one for
+Microsoft Active Directory (\fIschema.ActiveDirectory\fR) may
be found in the \fBsudo\fR distribution.
.PP
The schema for \fBsudo\fR in OpenLDAP form is included in the \s-1EXAMPLES\s0
installed on your LDAP server. In addition, be sure to index the
'sudoUser' attribute.
-Two versions of the schema, one for OpenLDAP servers (F<schema.OpenLDAP>)
-and another for Netscape-derived servers (F<schema.iPlanet>), may
+Three versions of the schema: one for OpenLDAP servers (F<schema.OpenLDAP>),
+one for Netscape-derived servers (F<schema.iPlanet>), and one for
+Microsoft Active Directory (F<schema.ActiveDirectory>) may
be found in the B<sudo> distribution.
The schema for B<sudo> in OpenLDAP form is included in the L<EXAMPLES>
projects / sudo / commitdiff