This document provides information about the Sudo rules registration screen, under the Users option, which allows you to create and configure privileged execution rules by linking specific users. This functionality enhances security by ensuring that rules apply only to previously authorized users.
Access Path
- On Segura, in the navigation bar, hover over the Product Menu and select EPM.
- In the side menu, select Policies > MacOS > Access policies.
- On the Sudo rules screen, click the Add button.
- On the Segregation screen, click the Users button.
Sudo rules tab
This tab allows you to configure the main parameters of the sudo rule.
| Item | Type | Required | Description |
|---|---|---|---|
| Identification name* | Text field | Yes | Defines the name that will identify the sudo rule. |
| Enabled* | Radio button | Yes | Defines the rule status. The options are Yes or No. |
| Commands for rule application* | Text field | Yes | Defines the commands associated with the rule. |
| It should be NOPASSWD?* | Radio button | Yes | Indicates whether the rule should waive the password prompt for sudo. The options are Yes or No. |
| Description | Text field | No | Allows an additional description to be entered for the rule. |
Users tab
This tab allows you to link users to the sudo rule.
| Item | Type | Required | Description |
|---|---|---|---|
| Add | Button | No | Opens the users modal to add new users to the table. |
| Users | Table | No | Table of users with fields ID, Username, Domain. |
Users modal
| Item | Type | Description |
|---|---|---|
| Search | Text field | Allows you to search available users. |
| ID | Text field | Identifier code of the user. |
| Username | Text field | Name of the user. |
| Domain | Text field | Domain to which the user belongs. |
| Add | Button | Adds the selected users. |
| Cancel | Button | Closes the modal without making changes. |
Review tab
Use the Review tab to check all the information entered in the previous steps before completing the policy registration.