Open johanburati opened 5 years ago
We've encountered the same issue. Can confirm that the workaround @johanburati mentioned works for us, as well. However, we'd rather prompt our admins for their passwords when attempting anything in sudo.
Actually, is it really necessary to disable password authentication on the sudoers configuration?, is it possible to have sudo work with the password authentication enabled ?
@carlosporter @johanburati "sudo: PAM authentication error: Conversation error" error is resolved now in the extension.
@johanburati @ndunn990 Default behavior is to ask for login again when the user uses sudo . When the user dont want to be prompted for login again with AAD when using sudo, The user can use that configuration.
Issue
Getting the following error when trying to sudo with the AD account:
Tried this on Centos 7.3/Ubuntu 18.04
Workaround
Changing the line in /etc/sudoers.d/aad_admins from:
to
fixed the issue.
Request to developers
Correct extension package either by updating the aad_admins file as per the workaround or add appropriate PAM rules.