Add the vtysh command with newly added "-n" option for multi asic to the read_only_cmds (#5845)

In multi asic platforms the "show ip bgp summary" commands is not available for user with read only privileges, so to fix this the vtysh command with the new "-n" option, added for multi asic platforms, needs to be added to the READ_ONLY_COMMANDS list in the sudoers files. Added the command vtysh -n [0-9] -c show * to list of READ_ONLY_COMMANDS in the sudoers files in this commit. Signed-off-by: Arvindsrinivasan Lakshmi Narasimhan <arlakshm@microsoft.com>
2020-11-10 12:18:49 -08:00 · 2020-11-10 12:18:49 -08:00 · 431f97d11d
commit 431f97d11d
parent ed186405dd
1 changed files with 1 additions and 0 deletions
--- a/files/image_config/sudoers/sudoers
+++ b/files/image_config/sudoers/sudoers
@ -35,6 +35,7 @@ Cmnd_Alias      READ_ONLY_CMDS = /sbin/brctl show, \
                                 /usr/bin/sonic_installer list, \
                                 /usr/bin/teamshow, \
                                 /usr/bin/vtysh -c show *, \
+                                 /usr/bin/vtysh -n [0-9] -c show *, \
                                 /bin/cat /var/log/syslog*, \
                                 /usr/bin/tail -F /var/log/syslog