Hide Forgot
Description of problem: Version-Release number of selected component (if applicable): ipa-server-2.0.0-25.el6.x86_64 ipa-admintools-2.0.0-25.el6.x86_64 How reproducible: Steps to Reproduce: 1. # ipa sudorule-remove-runasuser rule1 --users=sudouser1 Rule name: rule1 Enabled: TRUE Run As User: sudouser2 --------------------------- Number of members removed 1 --------------------------- 2. # ipa sudorule-add-runasuser rule1 --groups=sudogrp1,sudogrp2 Rule name: rule1 Enabled: TRUE Run As User: sudouser2 ------------------------- Number of members added 2 ------------------------- 3. # ipa sudorule-remove-runasuser rule1 --groups=sudogrp1 Actual results: Run As group is not displayed. # ipa sudorule-remove-runasuser rule1 --groups=sudogrp1 Rule name: rule1 Enabled: TRUE Run As User: sudouser2 --------------------------- Number of members removed 1 --------------------------- Expected results: "Run As Group: group1" should be displayed. # ipa sudorule-remove-runasuser rule1 --groups=sudogrp1 Rule name: rule1 Enabled: TRUE Run As Group: sudogrp2 --------------------------- Number of members removed 1 --------------------------- Additional info:
https://fedorahosted.org/freeipa/ticket/1325
master: d49bf3871bd4471d73ac06b871ae509bc340a544 ipa-2-0: 533c11ead972350e9597b3882c5e1819b33706ca
verified : [root@ipaserver ~]# ipa sudorule-remove-runasuser --users=sudouser1 sudorule1 Rule name: sudorule1 Enabled: TRUE RunAs Group: sudogrp1, sudogrp2 Sudo Option: always_set_home --------------------------- Number of members removed 1 --------------------------- [root@ipaserver ~]# ipa sudorule-remove-runasuser --groups=sudogrp1 sudorule1 Rule name: sudorule1 Enabled: TRUE RunAs Group: sudogrp2 Sudo Option: always_set_home --------------------------- Number of members removed 1 --------------------------- version : ipa-server-2.1.1-4.el6.x86_64
Technical note added. If any revisions are required, please edit the "Technical Notes" field accordingly. All revisions will be proofread by the Engineering Content Services team. New Contents: Cause: When removing a runasuser and defining a group the value is not included in output. Consequence: The command seems successful but the runasuser field is not in the output. Fix: The label for the returned data was mislabled so was not appearing in the command-line. Result: Adding a group to runasuser is properly displayed.
Since the problem described in this bug report should be resolved in a recent advisory, it has been closed with a resolution of ERRATA. For information on the advisory, and where to find the updated files, follow the link below. If the solution does not work for you, open a new bug report. http://rhn.redhat.com/errata/RHSA-2011-1533.html