-
Title
After upgrading to version 6.1 you are no longer able to run 'sudo -l -Uafter becoming root user with 'sudo su -' -
Description
Prior to upgrading to version 6.1 the following would work even without a root entry in sudoers:
# sudo su -
# sudo -l -U <username>
However in version 6.1 the following error occurs if there is no root entry for the client in the sudoers file:
-----------------------------
User root is not allowed to run sudo on <servername>
----------------------------- -
Cause
Product defect - 224032The sudo man page states:
-----------------------------
The invoking user's real (not effective) user-ID is used to determine the user name with which to query the security policy.
-----------------------------
Under 6.1, sudo seems to using the effective ID (root user), instead of the real (login) user-ID.
-
Resolution
STATUS:
Waiting for a fix in a future release of Privilege Manager for Sudo
WORKAROUND:
Ensure that you have a root entry in the sudoers file.
For example by default the following entry exists on most Linux systems:
-------------------------
root ALL=(ALL) ALL
------------------------- -
Change Request
224032