%zivit-admins ZIVITHOSTS=(ALL) NOPASSWD: ALL
# nagios
+nagios ALL=(ALL) NOPASSWD: /bin/systemctl is-system-running
nagios MQ_HOSTS=(rabbitmq) NOPASSWD: /usr/sbin/rabbitmqctl list_queues -p dsa name messages consumers
nagios ALL=(ALL) NOPASSWD: /usr/sbin/service ekeyd-egd-linux restart
nagios ALL=(ALL) NOPASSWD: /usr/sbin/service samhain restart
nagios MEGARAIDHOSTS=(ALL) NOPASSWD: /usr/local/bin/megarc -AllAdpInfo -nolog, /usr/local/bin/megarc -dispCfg -a0 -nolog
nagios MEGACTLHOSTS=(ALL) NOPASSWD: /usr/sbin/megactl -Hv
# other nagios things
-nagios backuphost,storace=(debbackup) NOPASSWD: /usr/lib/nagios/plugins/dsa-check-backuppg ""
+nagios storace=(debbackup) NOPASSWD: /usr/lib/nagios/plugins/dsa-check-backuppg ""
# groups and their role accounts
%auditor ALL=(accounting) ALL
%list LISTHOSTS=(amavis) NOPASSWD: /usr/bin/sa-learn
%list LISTHOSTS=(amavis) ALL
# geodns may reload bind
-geodnssync geo1,geo2,geo3=(root) NOPASSWD: /etc/init.d/bind9 reload
+geodnssync geo1,geo2,geo3=(root) NOPASSWD: /usr/sbin/service bind9 reload
geodnssync geo1,geo2,geo3=(root) NOPASSWD: /usr/sbin/rndc reconfig
# pushed nagiosadm reload icinga on tchaikovsky
nagiosadm tchaikovsky=(root) NOPASSWD: /usr/sbin/service icinga reload
projects / dsa-puppet.git / blobdiff