When adding a user/group using sudorule_add_runasuser and "RunAsGroup" set to category=all ("Any Group" in the UI), library throws exception:
python_freeipa.exceptions.BadRequest: users cannot be added when runs user or runAs group category='all'
The inverse is also occurs; when RunAsUser is set to "Anyone" (category=all) and you try to add a RunAsGroup.
This is a valid configuration in the IPA UI.
Installation info
Library
python-freeipa installed from pip - version 1.0.6
Client
ipa-client installed from packages - version 4.6.5, API_version 2.231
os - CentOS 7.7
Server
ipa-server - 4.6.8
os - CentOS 7.7
This is my work configuration, I can test on my home deployment which is a bit newer.
When adding a user/group using
sudorule_add_runasuserand "RunAsGroup" set tocategory=all("Any Group" in the UI), library throws exception:python_freeipa.exceptions.BadRequest: users cannot be added when runs user or runAs group category='all'The inverse is also occurs; when RunAsUser is set to "Anyone" (
category=all) and you try to add a RunAsGroup.This is a valid configuration in the IPA UI.
Installation info
Library
python-freeipainstalled from pip - version 1.0.6Client
ipa-clientinstalled from packages - version 4.6.5, API_version 2.231os- CentOS 7.7Server
ipa-server- 4.6.8os- CentOS 7.7This is my work configuration, I can test on my home deployment which is a bit newer.