Questions about FreeIPA

1. During user creationg it’s creates password like 73IETxc+.MfO
How to set up random passwords be more easily, like 8 characters value and characters+digits only?

2. After giving sudo rules to user, you have to wait for a while, before his privileges updated
How to setup privileges update time, and does it have update command like gpupdate force?

use the command line tool pwgen, for example pwgen -y,pwgen -s, pwgen -ys

you can also build yourself a script, call it whatever.sh and run it from cli.

for ((n=0;n<12;n++))
do dd if=/dev/urandom count=1 2> /dev/null | uuencode -m - | sed -ne 2p | cut -c-8
done

1 Like

sudo priviliges for a system user? normally, the user has to log off and back on again, or better reboot the machine.

as for freeipa:

sudo authselect enable-feature with-sudo

sudo systemctl restart sssd

1. During user creation by command “ipa user-add username --first=Name --last=Surname --random”
it’s creates password like 73IETxc+.MfO
How to set up random passwords be more easily, like 8 characters value and characters+digits only?

So it’s impossible to setup “–random” flag’s generation?

just some new user who just got sudo privileges

So I can use this commands on client machine?

By default, on Fedora, only a member of the ‘wheel’ group has sudo privileges.
Changing a users group membership is only recognized when that user first logs in, so if already on the system they would need to log off then back on before the change would be effective.

The same is true for several system configs.

Though giving a specific user privileges with sudo by editing the sudoers file with ‘visudo’ or placing a file with that users privileges into ‘/etc/sudoers.d’ are recognized as soon as the changes are saved and sudo is next invoked.