DocumentationRelease Notes
Documentation

Configure sudoers file in AD Bridge

Suggest Edits

When you add Active Directory entries to your sudoers file, typically /etc/sudoers, you must adhere to at least the following rules:

  • ALL must be in uppercase letters.
  • Use a slash character to escape the slash that separates the Active Directory domain from the user or group name.
  • Use the correct case; entries are case sensitive.
  • Use a user or group alias if the user or group has one in Active Directory.
  • If the user or group does not have an alias, you must set the user or group in the AD Bridge canonical name format of NetBIOSdomainName\sAMAccountName (and escape the slash character).

For users or groups with an alias, the AD Bridge canonical name format is the alias, which you must use. You cannot use the format of NetBIOS domain name\SAM account name.

For users and groups without an alias, the form of an entry in the sudoers file is as follows:

DOMAIN\\username
DOMAIN\\groupname

Example

Example entry of a group.

% EXAMPLE\\LinuxFullAdmins ALL=(ALL) ALL

kyle ALL=(ALL) ALL

ℹ️

Note

For more information about how to format your sudoers file, see your computer's man page for sudo.

Updated about 1 month ago

©2003-2025 BeyondTrust Corporation. All Rights Reserved. Other trademarks identified on this page are owned by their respective owners. BeyondTrust is not a chartered bank or trust company, or depository institution. It is not authorized to accept deposits or trust accounts and is not licensed or regulated by any state or federal banking authority.