Skip main navigation (Press Enter).

IBM TechXchange Community Conference Events IBM Developer

IBM TechXchange Community Conference Events IBM Developer

AIX Open Source

AIX Open Source

Share your experiences and connect with fellow developers to discover how to build and manage open source software for the AIX operating system

View Only

Back to discussions

Expand all | Collapse all

Sudo policy in AIX to restrict commands - no RBAC

1. Sudo policy in AIX to restrict commands - no RBAC

Like
Allwyn Menezes
Posted 3 days ago

Reply
We want to implement sudo policy to restrict some commands to osadmin user.

How to add in sudo policy,If I want to restrict any command which starts from below aix commands

chdev
chinet
umount
hostname
rmlv
migratepv
cplv
rmfs
mmshutdown
mmunmount
mmchfs
mmchconfig
mmchcluster
mmdelnode
shutdown

We got below soulution.but we dont want to implement RBAC , we have to do it via sudo policy.

Perhaps a better way would be to use the native AIX mechanism, RBAC: RBAC roles - IBM Documentation
You can assign predefined roles to users (Predefined roles - IBM Documentation) or create your own roles (mkrole) and allow users to execute only specified tasks.

------------------------------
Allwyn Menezes
------------------------------

Additional
Resources

Discover these carefully selected resources to dive deeper into your journey and unlock fresh insights

Office

If you need immediate assistance please contact the Community Management team

support@communitysite.ibm.com

Monday - Friday: 8AM - 5 PM MT

Powered by Higher Logic

Global message icon