Linux sudo remote installation should work with password authentication.

Linux sudo remote installation should work with password authentication.

Currently, the Linux sudo remote client installation only works in case sudo has been configured passwordless.

This is documented here:
https://docs.microfocus.com/itom/Data_Protector:10.04/Install/pre_install/pre_install_tasks
"In the sudo users file, configure passwordless access for the non-root user who will be used for push installation."

For some companies, passwordless sudo is a non acceptable security risk, so there is a requirement that DP can do Linux sudo remote client installation with a password.

 

3 Comments
Micro Focus Contributor
Micro Focus Contributor
Status changed to: Waiting for Votes
 
Honored Contributor.. Jim Turner Honored Contributor..
Honored Contributor..

The better option during an agent push to new Linux clients is for the GUI to prompt for username/password of a non-privileged user.  DP would then connect to the Linux host via ssh with the non-privileged account & password and execute "/usr/bin/sudo su -" before installing the agents. That method would require only that the non-privileged userid be included in /etc/sudoers which is a commonly accepted practice for sysadmin userids.

Micro Focus Expert
Micro Focus Expert

Even with sudo configured password less DP does not use sudo su - only. Last week my customer configured sudo su - passwordless but installation fails as DP tries to executed pre installation checks as root user without using sudo su as so the installation fails.

It seems not only sudo su should be enabled but also other commands.

The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.