Obviously my interrogations comes from that the admin user is belong the group domain admins but in cockpit, the role is made for the group admins, moreover it miss the sudoers file for the group admins
Just to avoid future issues, I would prefer to be consistent
put the admin user to admins or create a role for the group domain admins
create a sudoers file for the admin group, same for domain admins if we create a role for it.
I am a lazzy developer, admins will lower the future headache in development … saying that, for backward compatibility, we should follow what we have.