Home Explore Help
Register Sign In
opuppet
/
module-sudo
6
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 757fee0006
Branches Tags
module-sudo
/
README.mdwn

README.mdwn 1003 B
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940 
  1. sudo support in puppet
    2. 

  2. ======================
    3. 

  3. 

  4. To simply install sudo on your servers, use:
    5. 

  5. 

  6.     include sudo
    7. 

  7. 

  8. By default, this will not deploy any sudoers file. Use the following
    9. 

  9. to make sure a sudoers file is deployed:
    10. 

  10. 

  11.     class { 'sudo': deploy_sudoers => TRUE }
    12. 

  12. 

  13. This will deploy the default sudoers file shipped with the module or
    14. 

  14. one shipped in your `site_sudo` module, see `manifests/init.pp` for
    15. 

  15. the search path.
    16. 

  16. 

  17. You can also use defines to grant specific access. For example, to
    18. 

  18. give access to a user:
    19. 

  19. 

  20.     sudo::access { 'foo': }
    21. 

  21. 

  22. This will create a file in `/etc/sudoers.d/01_user_access-foo` with a
    23. 

  23. content:
    24. 

  24. 

  25.     foo ALL=(ALL) ALL
    26. 

  26. 

  27. You can change parameters, for example a no password access:
    28. 

  28. 

  29.     sudo::access { 'foo':
    30. 

  30.         user => 'bar',
    31. 

  31.         access => 'ALL = NOPASSWD: ALL'
    32. 

  32.     }
    33. 

  33. 

  34. You can also create user aliases with:
    35. 

  35. 

  36.     sudo::user_alias { 'GROUP': members => 'foo, bar' }
    37. 

  37. 

  38. .. which in turn can be used in `sudo::access`:
    39. 

  39. 

  40.     sudo::access { 'GROUP-access': user => 'GROUP' }
    41.