This document provides information about the Sudo rules registration screen, under the Devices option, which allows you to create and configure privileged execution rules by linking specific devices. This feature reinforces security by ensuring that rules apply only to previously authorized devices.
Access Path
- On Segura, in the navigation bar, hover over the Product Menu and select EPM.
- In the side menu, select Policies > MacOS > Access policies.
- On the Sudo rules screen, click the Add button.
- On the Segregation screen, click the Device button.
Sudo rules tab
This tab allows you to configure the main parameters of the sudo rule.
| Item | Type | Required | Description |
|---|---|---|---|
| Identification name* | Text field | Yes | Defines the name that will identify the sudo rule. |
| Enabled* | Radio button | Yes | Defines the rule status. The options are Yes or No. |
| Commands for rule application* | Text field | Yes | Defines the commands associated with the rule. |
| It should be NOPASSWD?* | Radio button | Yes | Indicates whether the rule should waive the password prompt for sudo. The options are Yes or No. |
| Description | Text field | No | Allows an additional description to be entered for the rule. |
Devices tab
This tab lets you link devices to the access policy.
| Item | Type | Required | Description |
|---|---|---|---|
| Add | Button | No | Opens the devices modal to add new devices to the table. |
| Devices | Table | No | Table of devices with fields ID, Hostname, Domain, IP and Operating system. |
Devices modal
| Item | Type | Description |
|---|---|---|
| Search | Text field | Allows searching for available devices. |
| ID | Text field | Device identifier code. |
| Hostname | Text field | Name of the device. |
| Domain | Text field | Domain to which the device belongs. |
| IP | Text field | IP address of the device. |
| Operating system | Text field | Operating system installed on the device. |
| Add | Button | Adds the selected devices. |
| Cancel | Button | Closes the modal without making changes. |
Review tab
Use the Review tab to check all the information entered in the previous steps before completing the policy registration.