- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-23-2021 05:56 AM
Hi expert,
Since root privileges not granted, My customer is setting up non-root user with sudo right for Linux/Unix Discovery.
So, they're going to use Sudo right to run selected Linux/Unix commands as root for Discovery & Service Mapping.
Can you please provide the full list of the required commands to be added to /etc/sudoer?
Thanks in advance !
Solved! Go to Solution.
- Labels:
-
Discovery
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-23-2021 08:23 AM
There's a Docs page devoted for this specific purpose. Please review the link below:
Service Mapping commands requiring a privileged user | ServiceNow Docs
If you're just looking at Discovery and not Service Mapping, you can focus on the top section of the page that's broken down by OS. I think the list above basically covers those, but the Docs get updated as things change with new releases, so it's a good page to bookmark.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-23-2021 06:35 AM
Hi Jae,
Given below are the UNIX and Linux commands requiring root privileges
| Command | Purpose |
|---|---|
| HP-UX | |
| adb | Gathers CPU speed and memory. /etc/sudoers line example: Disco ALL=(root) /usr/bin/adb |
| All Linux | |
| dmidecode | Gathers several pieces of information about the hardware, including the serial number embedded within the motherboard. /etc/sudoers line example: Disco ALL=(root) /sbin/dmidecode |
| fdisk | Gathers the disks and size information on the system. /etc/sudoers line example: Disco ALL=(root) /usr/bin/fdisk -l |
| multipath | Gathers device mappings for MPIO. /etc/sudoers line example: Disco ALL=(root) /usr/bin/multipath -ll |
| Linux and Solaris | |
| dmsetup | Examines a low level volume. /etc/sudoers line example: Disco ALL=(root) /usr/bin/dmsetup table * Disco ALL=(root) /usr/bin/dmsetup ls |
| All UNIX versions | |
| lsof | Determines the relationship between processes and the connections being made to the system. /etc/sudoers line example: Disco ALL=(root) /sbin/lsof |
| oratab | Grants read access to the oratab file for locating the Oracle Home and pfile. /etc/sudoers line example: N/A |
| Solaris | |
| iscsiadm | Gets iSCSI IQNs /etc/sudoers line example: ${sudo:iscsiadm list target -S} |
| fcinfo | Gets WWPNs for ports. /etc/sudoers line example: ${sudo:fcinfo remote-port -sl -p $port} |
| prtvtoc | Reports information about disk partitions. /etc/sudoers line example: Disco ALL=(root) /usr/bin/prtvtoc |
| /usr/bin/ps | Lists running process. As an alternative to running with root access, add a proc_owner role. /etc/sudoers line example: Disco ALL=(root) /usr/bin/ps |
| /usr/ucb/ps | Lists running process. As an alternative to running with root access, add a proc_owner role.
The use of the
/usr/ucb/ps command is deprecated as of Solaris 11./etc/sudoers line example: Disco ALL=(root) /usr/ucb/ps |
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-23-2021 04:41 PM
Thanks Abbas!
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎06-06-2022 10:44 AM
Thank you Abbas... It was very helpful.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
‎12-23-2021 08:23 AM
There's a Docs page devoted for this specific purpose. Please review the link below:
Service Mapping commands requiring a privileged user | ServiceNow Docs
If you're just looking at Discovery and not Service Mapping, you can focus on the top section of the page that's broken down by OS. I think the list above basically covers those, but the Docs get updated as things change with new releases, so it's a good page to bookmark.
