Having problems with your account or logging in?
A lot of changes are happening in the community right now. Some may affect you. READ MORE HERE

sudo rules for cdf deployment

sudo rules for cdf deployment

Hello,

We use ITOM_Suite_Foundation_2019.02.00111

I would like to test the suite installation. Currently I try to setup a 3-node master cluster. After the first master node installation I go to the web interface (https://<host>:3000) and follow the suite install steps.

At some point you can add additional master nodes to the cluster: https://docs.microfocus.com/itom/Operations_Bridge:2019.02/DeploymentConfiguration (step 8)

Or you can do the same afterwards: https://docs.microfocus.com/itom/Operations_Bridge:2019.02/AddRemoveMachinesCluster

Here you have to enter credentials for the node you want to add. This way of deployment method is highly insecure, the sudo rules necessary (without password) don't make this better.

Anything that can be modified as a user and is executed as root is not secure. In our environment we split this in a way that linux administrators will give sudo rights and place all the necessary files on the right place for us.
What I would like to see is that the files are already placed by an linux administrator on the node you want to add. So that I, as a user with sudo right, can execute a command locally through ssh to add the node to the cluster.

Regards,
Chris

1 Comment
Micro Focus Frequent Contributor
Micro Focus Frequent Contributor
Status changed to: Waiting for Votes
 
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.