PlateSpin Recon users can inventory machines by using sudo user credentials only if the following prerequisites are met:
Users have permission to run commands on the target machine. To grant permission for the users to perform inventory and monitoring, do the following:
Log in as root to the Linux machine for which you want to grant permission to a sudo user.
Open the sudoers configuration file by executing the following command:
visudo
Append one of the following lines to the file:
nonroot_username ALL=(root) ALL
or
nonroot_username ALL=(ALL) ALL
In the command, replace nonroot_username with the sudo username.
IMPORTANT:Make sure that the password settings for a sudo user are not overridden by a higher group-level setting.
In the sudoers configuration file, ensure the following:
The flags such as targetpw, rootpw, and runaspw are commented.
The session timeout setting (timestamp_timeout) if available is set to a positive integer that is greater than 1 and less than or equal to 5.
If the session timeout setting is not available in the file, then a default value of 5 is considered.