Valid on UNIX
The sesudo utility executes commands for one user with the permissions of another user. The sesudo utility borrows the permissions of another user (the target user) to perform one or more commands. This allows regular users to perform, for example, actions-such as the mount command-that require superuser authority.
The rules governing user authority to perform commands in this way are defined as access rules in the SUDO class. A record in the SUDO class contains a command script, and can specify both users who are permitted to run the script with sesudo and users who are forbidden to.
Each time sesudo runs, it returns one of the following values.
Target user not found, or command interrupted
Password error
Execution successful
Problem with usage of parameters
syscall is not loaded
Target user error
syscall is loaded but the daemon is not running
Authorization error
This command has the following format:
sesudo {-h|-list|record [params]}
Displays the help screen.
Lists sesudo commands you can execute. These are the SUDO records defined in the CA ControlMinder database that you are authorized to execute.
Specifies the name of the SUDO class record the security administrator gave to the command you want to execute using the sesudo utility.
(Optional) Specifies the parameters you want to send to the command you are executing.
Copyright © 2013 CA Technologies.
All rights reserved.
|
|