SpanKey now supports Sudo
RCDevs bundled its own modified version of the sudo’s sudoers policy plugin in SpanKey SSH Key Server, enabling users connected via SSH through our solution to use the sudo command and to centrally manage the sudoers rules in your LDAP directory.
The sudo command allows users to run programs with the security privileges of another user, most frequently the superuser, without having to give the password and the full power of the superuser account, thanks to selective rules by user, machine and command.
SpanKey’s integration of sudo allows not only to map your sudoers rules across your clients, users and global policies, but also offers an advanced mode to use the full expressivity of a regular sudoers file. It permits for example :
- to set rules for specific local user accounts not centralized in the SpanKey server,
- to define users, hosts, target users, and commands aliases that can be later referenced in the rules of the advanced mode but also in the rules of the clients, users and global policies for the last two kind of aliases
- to set the sudo global settings and to control the I/O audit / logging feature that sudo traditionally offers. It alows more flexibility and extra audit features in addition to the ones already provided by SpanKey SSH Key Server