This feature replaces standard sudo, helping to simplify, centralize and manage sudo usage rules. The rules define which commands users are allowed to run as sudo and elevate privilege when the user is not part of the sudoers user group.
You can apply rules in the following scenarios:
- General: this rule will be applied to all users and devices. Users must be in the
gonixgroup. - Device: this rule will only be applied to specific devices. Users on the devices must be in the
gonixgroup. - User: this rule will only apply to specific users. It is not necessary to be in the
gonixgroup.
Alert
When creating rules for the same command, the new rule overrides the old one.
The rules follow the following order of priority:
- Sudo rule for user.
- Sudo rule for device.
- General sudo rule.