43429members
217967posts

User with sudo Rights for Vulnerability Scan

Highlighted

User with sudo Rights for Vulnerability Scan

This question was originally posted on DCIM Support by Nikolaos Panagiotou on 2019-12-02


Our customer requested to create a user on the DCO server with sudo rights, which will be used for vulnerability scans from their IT security department. Is this acceptable or would there be a risk for the DCO server?

(CID:152080578)

2 REPLIES 2
Highlighted

Re: User with sudo Rights for Vulnerability Scan

This answer was originally posted on DCIM Support by Greg Sterling on 2019-12-02


There shouldn't be a problem with adding your own entries.

Please be careful though not to edit existing entries or create your own entry which conflicts with existing definitions as it could lead to unexpected behavior with the DCO application.

When performing tasks like this, I would recommend making a backup of the sudoers file before you start, and I recommend you keep an open SSH session which has already sudo'd to root. Then test changes to sudoers with a separate opened SSH session. If you make a mistake which breaks sudo, you can fix the sudoers file using the previously opened root session or restoring the backup copy. Otherwise you may break your ability to change to root access.

Regards

Greg Sterling

(CID:152568585)

Highlighted

🔒 Closed

This question is closed for comments. You're welcome to start a new topic if you have further comments on this issue.