Using OPAM 11.1.2.3: Not Able to Search for the ROOT Account with Sudo Authorization on Linux Machines

(Doc ID 2305439.1)

Last updated on OCTOBER 09, 2017

Applies to:

Oracle Privileged Account Manager - Version 11.1.2.3.0 and later
Information in this document applies to any platform.

Symptoms

Configured OPAM 11.1.2.3 for password vault of ROOT accounts. The user store configured for all these Unix machines is LDAP (OUD). In LDAP we have created a basic account ‘OPAMTMP’ with no permissions assigned. However on the AIX and Solaris servers we have provided permissions as below:
OPAMTMP ALL=(root) /usr/bin/passwd root

With above permissions, we were able to check-out the ROOT password successfully.

But when assigning similar & more privileges to Linux machines, with sudo authorization checked in Target we are not able to search for ROOT or any other account.

Cause

Sign In with your My Oracle Support account

Don't have a My Oracle Support account? Click to get started

My Oracle Support provides customers with access to over a
Million Knowledge Articles and hundreds of Community platforms