- Description
- Setup - The basics of getting started with puppet-sudo
- Usage - Configuration options and additional functionality
- Reference - An under-the-hood peek at what the module is doing and how
- Limitations - OS compatibility, etc.
- Development - Guide for contributing to the module
Installs and manages the Sudo package.
This module manages the Sudo package and also it's configuration files.
To enable sudo module, all you simply need to do is include the class.
class { '::sudo' }
::sudo::rule { 'test_group':
commands => '/usr/local/bin/test.sh',
target => 'root',
}
To manage /etc/sudoers file, this module provides few configurable options.
class { '::sudo':
full_sudo_groups => ['produsers'],
}
Configuring additional sudo access under /etc/sudoers.d directory for specific set of servers.
sudo::rule { 'test_group':
commands => '/usr/local/bin/test.sh',
target => 'root'
}
This module provides the following classes:
- sudo::install
- sudo::config
Installs the sudo package and manages it's configuration files.
Environment variables for sudoers.
Groups that need full privileged Access
Configures logging for sudo.
Enables or disables logging.
The top-level directory to use when constructing the path name for the output log directory.
The path name, relative to log_dir, in which to store output logs.
Array of commands for which logging will be disabled.
Array of users for which logging will be disabled.
The sudo module contains the following defined types:
The following parameters are available in the ::sudo::rule defined type:
Sudo commands to allow for the group.
Sudo defaults to set for the group.
Name of the group sudo will be enabled for.
Target users. These are the users to allow running commands as.
Template for the file to be added under /etc/sudoers.d/ directory.
Supported operating systems:
- Centos: 6, 7
Supported puppet versions:
- 4.5.0+