Show Table of Contents
Modifying
Modifying
30.5. Modifying sudo Commands and Command Groups
Modifying sudo Commands and Command Groups in the Web UI
- Under the Policy tab, click → or → .
- Click the name of the command or command group to display its configuration page.
- Change the settings as required. On some configuration pages, the button is available at the top of the page. On these pages, you must click the button to confirm the changes.
Modifying sudo Commands and Command Groups from the Command Line
To modify a command or command group, use the following commands:
ipa sudocmd-modipa sudocmdgroup-mod
Add command-line options to the above-mentioned commands to update the
sudo command or command group attributes. For example, to add a new description for the /usr/bin/less command:
$ ipa sudocmd-mod /usr/bin/less --desc="For reading log files" ------------------------------------- Modified Sudo Command "/usr/bin/less" ------------------------------------- Sudo Command: /usr/bin/less Description: For reading log files Sudo Command Groups: files
For more information about these commands and the options they accept, run them with the
--help option added.
Where did the comment section go?
Red Hat's documentation publication system recently went through an upgrade to enable speedier, more mobile-friendly content. We decided to re-evaluate our commenting platform to ensure that it meets your expectations and serves as an optimal feedback mechanism. During this redesign, we invite your input on providing feedback on Red Hat documentation via the discussion platform.