Closed qsandeep closed 6 years ago
You can skip paswordless sudo
step if you org has concerns about using it. We've seen some other orgs doing the same.
But in general it's OK to configure paswordless sudo for stanley user if you expect StackStorm to be your orchestrator and run workflows/deployment/auto-remediation steps and other commands with elevated privileges.
By removing paswordless sudo you still can specify sudo password when running commands, see:
https://docs.stackstorm.com/reference/runners.html#runner-parameters sudo
and sudo_password
runner parameters.
Hope that answers your question.
ISSUE TYPE
STACKSTORM VERSION
OS / ENVIRONMENT / INSTALL METHOD
Custom Install
SUMMARY
We are setting up the Stackstorm for the first time on a Linux environment. Our Linux admins have concern with below step where the User Stanley is created with out password and it also gets ALL permission to the root. Our Linux Admins have stopped the installation and we need more justification or alternate method to continue.
Do you have any alternate way where we can have Stanley user with password and also give required permissions only ?