From: Todd C. Miller <Todd.Miller@courtesan.com>
Date: Fri, 9 May 2008 18:48:18 +0000 (+0000)
Subject: add sudoRunAsUser and sudoRunAsGroup
X-Git-Tag: SUDO_1_7_0~113
X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=236fd128d34bf8c7baf6e85f58729f3e7c7ea878;p=sudo

add sudoRunAsUser and sudoRunAsGroup
---

diff --git a/schema.ActiveDirectory b/schema.ActiveDirectory
index 56ae4cfad..fd85d49fa 100644
--- a/schema.ActiveDirectory
+++ b/schema.ActiveDirectory
@@ -1,16 +1,11 @@
-#==========================================================================
-# File         : sudoers-ad-schema.ldf
-# Description  : Active Directory Schema for sudo configuration (sudoers)
-# Originated by: Chantal Paradis
-# Sanitized by : Eric Paquet, http://www.pcdsolutions.com
-# Updated      : 2008/05/08
-# Support Info : No support, use at your own risk
+#
+# Active Directory Schema for sudo configuration (sudoers)
 #
 # To extend your Active Directory schema, run the following command
 # on your Windows DC:
 #
 #  ldifde -i -f sudoers-ad-schema.ldf -c dc=X dc=YOURDOMAIN,DC=COM
-#==========================================================================
+#
 
 dn: CN=sudoUser,CN=Schema,CN=Configuration,DC=X
 changetype: add
@@ -82,7 +77,7 @@ attributeSyntax: 2.5.5.5
 isSingleValued: FALSE
 showInAdvancedViewOnly: TRUE
 adminDisplayName: sudoRunAs
-adminDescription: User(s) impersonated by sudo
+adminDescription: User(s) impersonated by sudo (deprecated)
 oMSyntax: 22
 lDAPDisplayName: sudoRunAs
 name: sudoRunAs
@@ -108,6 +103,44 @@ name: sudoOption
 schemaIDGUID:: ojaPzBBlAEmsvrHxQctLnA==
 objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
 
+dn: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=X
+changetype: add
+objectClass: top
+objectClass: attributeSchema
+cn: sudoRunAsUser
+distinguishedName: CN=sudoRunAsUser,CN=Schema,CN=Configuration,DC=X
+instanceType: 4
+attributeID: 1.3.6.1.4.1.15953.9.1.6
+attributeSyntax: 2.5.5.5
+isSingleValued: FALSE
+showInAdvancedViewOnly: TRUE
+adminDisplayName: sudoRunAsUser
+adminDescription: User(s) impersonated by sudo
+oMSyntax: 22
+lDAPDisplayName: sudoRunAsUser
+name: sudoRunAsUser
+schemaIDGUID:: 9C52yPYd3RG3jMR2VtiVkw==
+objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
+
+dn: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=X
+changetype: add
+objectClass: top
+objectClass: attributeSchema
+cn: sudoRunAsGroup
+distinguishedName: CN=sudoRunAsGroup,CN=Schema,CN=Configuration,DC=X
+instanceType: 4
+attributeID: 1.3.6.1.4.1.15953.9.1.7
+attributeSyntax: 2.5.5.5
+isSingleValued: FALSE
+showInAdvancedViewOnly: TRUE
+adminDisplayName: sudoRunAsGroup
+adminDescription: Groups(s) impersonated by sudo
+oMSyntax: 22
+lDAPDisplayName: sudoRunAsGroup
+name: sudoRunAsGroup
+schemaIDGUID:: xJhSt/Yd3RGJPTB1VtiVkw==
+objectCategory: CN=Attribute-Schema,CN=Schema,CN=Configuration,DC=X
+
 dn: CN=sudoRole,CN=Schema,CN=Configuration,DC=X
 changetype: add
 objectClass: top
@@ -123,6 +156,8 @@ mayContain: sudoCommand
 mayContain: sudoHost
 mayContain: sudoOption
 mayContain: sudoRunAs
+mayContain: sudoRunAsUser
+mayContain: sudoRunAsGroup
 mayContain: sudoUser
 rDNAttID: cn
 showInAdvancedViewOnly: FALSE