This policy setting controls which users may use the sudo(1) command to run commands as another user. It contains a list of entries, each of which specifies the username of the user running sudo, along with the name of the other user (in parentheses) and the list of commands that may be run as that user. The commands must be specified by full pathname (e.g. '/bin/bash' rather than just 'bash').
Example:
User_Alias FULLTIMERS = millert, mikef, dowdy
Runas_Alias OP = root, operator
Host_Alias SPARC = bigtime, eclipse, moet, anchor
Host_Alias CUNETS = 128.138.0.0/255.255.0.0
Cmnd_Alias KILL = /usr/bin/kill
Cmnd_Alias SU = /usr/bin/su
root ALL = (ALL) ALL
jack CUNETS = ALL
operator ALL = KILL
joe SPARC = !SU
FULLTIMERS ALL = (OP) NOPASSWD: ALL
Registry Hive | HKEY_LOCAL_MACHINE |
Registry Path | Software\Policies\Centrify\UnixSettings |
Value Name | sudo.enabled |
Value Type | REG_DWORD |
Enabled Value | 1 |
Disabled Value | 0 |
Registry Hive | HKEY_LOCAL_MACHINE |
Registry Path | Software\Policies\Centrify\UnixSettings\SuDo |
Value Name | **delvals. |
Value Type | REG_DWORD |
Value | 1 |
Registry Hive | HKEY_LOCAL_MACHINE |
Registry Path | Software\Policies\Centrify\UnixSettings\SuDo |
Value Name | **delvals. |
Value Type | REG_DWORD |
Value | 1 |
Registry Hive | HKEY_LOCAL_MACHINE |
Registry Path | Software\Policies\Centrify\UnixSettings |
Value Name | sudo.enabled |
Value Type | REG_DWORD |
Default Value | /etc/issue |