From 4182b3a1f9f6e1823db9832533c6c9e51d13da8e Mon Sep 17 00:00:00 2001 From: Jakub Hrozek Date: Sun, 29 Jan 2012 22:11:45 +0100 Subject: Include sudo manual pages only conditionally --- src/man/sssd-ldap.5.xml | 31 +++++++++++++++++++++++++------ 1 file changed, 25 insertions(+), 6 deletions(-) (limited to 'src/man/sssd-ldap.5.xml') diff --git a/src/man/sssd-ldap.5.xml b/src/man/sssd-ldap.5.xml index 5afa9ad7..3228e624 100644 --- a/src/man/sssd-ldap.5.xml +++ b/src/man/sssd-ldap.5.xml @@ -1553,7 +1553,15 @@ ldap_access_filter = memberOf=cn=allowedusers,ou=Groups,dc=example,dc=com + + + + + SUDO OPTIONS + + + ldap_sudorule_object_class (string) @@ -1597,7 +1605,8 @@ ldap_access_filter = memberOf=cn=allowedusers,ou=Groups,dc=example,dc=com The LDAP attribute that corresponds to the - host name. + host name (or host IP address, host IP network, + or host netgroup) Default: sudoHost @@ -1610,7 +1619,7 @@ ldap_access_filter = memberOf=cn=allowedusers,ou=Groups,dc=example,dc=com The LDAP attribute that corresponds to the - user name. + user name (or UID, group name or user's netgroup) Default: sudoUser @@ -1648,8 +1657,8 @@ ldap_access_filter = memberOf=cn=allowedusers,ou=Groups,dc=example,dc=com ldap_sudorule_runasgroup (string) - The LDAP attribute that corresponds to the - group name that commands may be run as. + The LDAP attribute that corresponds to the group + name or group GID that commands may be run as. Default: sudoRunAsGroup @@ -1722,9 +1731,16 @@ ldap_access_filter = memberOf=cn=allowedusers,ou=Groups,dc=example,dc=com - + + This manual page only describes attribute name mapping. + For detailed explanation of sudo related attribute sematics, + see + + sudoers.ldap5 + + @@ -1835,7 +1851,7 @@ ldap_access_filter = memberOf=cn=allowedusers,ou=Groups,dc=example,dc=com - + ldap_sudo_search_base (string) @@ -1851,6 +1867,9 @@ ldap_access_filter = memberOf=cn=allowedusers,ou=Groups,dc=example,dc=com Default: the value of ldap_search_base + + + -- cgit