Change sudo to another command such as dzdo for privilege escalation?

calvincs · ‎02-23-2015

In order for discovery to run properly, some AIX / Unix / Linux commands needs sudo escalation in order to run. If your organization does not use sudo for permission escalation, and instead uses say dzdo, how does one change this system wide?

As an example, if you go to Discovery Definition -> Probes -> "Linux - Hardware Information" and looks at the Probe parameters, must_sudo is marked as True (Out of the Box), this means when this probe runs on a Linux system, it will run sudo in-front of the command to ensure it has enough privileges to execute the command.
If however our company uses say dzdo instead of sudo, how does one change this for all probes where must_sudo is marked True?

Only thing I have come up with is marking this option as False, and adding dzdo in-front of the command. However I'm curious if there is a more eloquent way of doing this?

Thanks in advance!

Calvin

tim_broberg · ‎02-23-2015

Sorry, no. As of Fuji, there are no other supported privilege escalation utilities, but this is becoming a common request and is under consideration for future releases.

What psuedo-sudo's are people using out there? I know I've heard of pbrun, pfexec, sesu, and now dzdo. Are there others people depend on?

- Tim.

View solution in original post

tim_broberg · ‎02-23-2015

Sorry, no. As of Fuji, there are no other supported privilege escalation utilities, but this is becoming a common request and is under consideration for future releases.

What psuedo-sudo's are people using out there? I know I've heard of pbrun, pfexec, sesu, and now dzdo. Are there others people depend on?

- Tim.

Community Alums · ‎04-07-2015

dzdo is a priority for us. Is there anyone who have found a way to make dzdo work?

Ankush13 · ‎04-08-2015

Did you try to include this in the command directly? Make sure to use NOPASSWD in equivalent file as well.

kaustubh_j · ‎08-26-2015

Which equivalent file are you talking about ?