LinuxQuestions.org
Review your favorite Linux distribution.
Home Forums Tutorials Articles Register
Go Back   LinuxQuestions.org > Forums > Other *NIX Forums > Solaris / OpenSolaris
Reload this Page Sudo Login Problem using RSA Token Authentication
User Name
Password
Solaris / OpenSolaris This forum is for the discussion of Solaris, OpenSolaris, OpenIndiana, and illumos.
General Sun, SunOS and Sparc related questions also go here. Any Solaris fork or distribution is welcome.

Notices


Reply
  Search this Thread
Old 02-28-2011, 11:01 AM   #1
devUnix
Member
 
Registered: Oct 2010
Posts: 606

Rep: Reputation: 59
Sudo Login Problem using RSA Token Authentication

Hi,


When I issue the command:

Code:
sudo -l
I get

Code:
/usr/bin/su  MrGreat
listed in the output.

But when I execute the following command:

Code:
bash-2.05$ sudo /usr/bin/su  MrGreat
I get this error:

Code:
Sorry, user MrOrdinary is not allowed to execute '/usr/bin/su MrGreat' as root on lazyServer.
We have RSA Token authentication for login on the server. It works for my user ID and for other user IDs which are listed in the output given by sudo -l.

Any ideas?

System pertinent information you may need:

Code:
$uname -a
SunOS lazyServer 5.9 Generic_122300-48 sun4u sparc SUNW,Sun-Fire
$
Last edited by win32sux; 02-28-2011 at 05:42 PM. Reason: Moved to Solaris.
 
Old 03-03-2011, 10:48 AM   #2
SL00b
Member
 
Registered: Feb 2011
Location: LA, US
Distribution: SLES
Posts: 375

Rep: Reputation: 112Reputation: 112
Something is missing in your sudo rules. In your sudo -l display, I'm not seeing the run-as ID, which would have to contain "root" in order to allow you to do what you're trying to do.

I'm having trouble figuring out why you'd want to use sudo and su at the same time, since one replaces the other. You could issue "sudo -u MrGreat bash" and accomplish the same thing. This way you're not granting any users authority to use root on anything. You just make the sudo rule like so:

Code:
%groupname     ALL = (MrGreat) ALL
And then add all your users who need MrGreat authority to said group.
 
  


Reply



Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts
BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
[SOLVED] Debian Etch SSH rsa authentication problem parf Linux - Newbie 6 12-16-2009 02:47 AM
cannot login - authentication token manipulation error aeby Linux - Security 3 07-19-2007 10:21 AM
Query regarding SS- RSA Authentication Kosal Linux - Security 2 03-14-2006 11:30 PM
How to RSA authentication ERBRMN Linux - Security 11 07-29-2005 11:22 AM
Sshd Rsa Authentication! Help! ryanstrayer Linux - General 0 01-23-2002 11:35 PM

LinuxQuestions.org > Forums > Other *NIX Forums > Solaris / OpenSolaris

All times are GMT -5. The time now is 03:15 PM.

Contact Us - Advertising Info - Rules - Privacy - LQ Merchandise - Donations - Contributing Member - LQ Sitemap -
Main Menu
Advertisement
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
Open Source Consulting | Domain Registration