Adding a Active Directory (AD) Domain Account to /etc/sudo is fairly easy on Centrify Express for CentOS 6. Suppose you have an AD Group called “Sys_Admin”, just add it to the
..... ## Allow root to run any commands anywhere root ALL=(ALL) ALL %System_Admin ALL=(ALL) ALL .....
If it is an individual user, just get the userid from Active Directory
# getent passwd myuserid user1:x:122:122:User1 Name:/home/user1:/bin/centrifyda
Update /etc/sudoers
..... ## Allow root to run any commands anywhere root ALL=(ALL) ALL %user1 ALL=(ALL) ALL .....
Do a final check on whether the sudo is working fine by doing
# sudo -l Matching Defaults entries for user1 on this host: requiretty, !visiblepw, always_set_home, env_reset, env_keep="COLORS DISPLAY HOSTNAME HISTSIZE INPUTRC KDEDIR LS_COLORS", env_keep+="MAIL PS1 PS2 QTDIR USERNAME LANG LC_ADDRESS LC_CTYPE", env_keep+="LC_COLLATE LC_IDENTIFICATION LC_MEASUREMENT LC_MESSAGES", env_keep+="LC_MONETARY LC_NAME LC_NUMERIC LC_PAPER LC_TELEPHONE", env_keep+="LC_TIME LC_ALL LANGUAGE LINGUAS _XKB_CHARSET XAUTHORITY", secure_path=/sbin\:/bin\:/usr/sbin\:/usr/bin User user1 may run the following commands on this host: (ALL) ALL