B.9 Sudo Configuration to Inventory and Monitor Linux Machines

PlateSpin Recon users can inventory machines by using sudo user credentials only if the following prerequisites are met:

  1. Users have permission to run commands on the target machine. To grant permission for the users to perform inventory and monitoring, do the following:

    1. Log in as root to the Linux machine for which you want to grant permission to a sudo user.

    2. Open the sudoers configuration file by executing the following command:


    3. Append one of the following lines to the file:

      nonroot_username ALL=(root) ALL


      nonroot_username ALL=(ALL) ALL

      In the command, replace nonroot_username with the sudo username.

      IMPORTANT:Make sure that the password settings for a sudo user are not overridden by a higher group-level setting.

  2. In the sudoers configuration file, ensure the following:

    • The flags such as targetpw, rootpw, and runaspw are commented.

    • The session timeout setting (timestamp_timeout) if available is set to a positive integer that is greater than 1 and less than or equal to 5.

      If the session timeout setting is not available in the file, then a default value of 5 is considered.