Privileged commands for the MID Server

To discover certain information on a host server, Discovery must run SSH commands with higher privilege.

An example of information that requires elevated privileges is information about storage disks on a host server, retrieved with the fdisk -l command. If your system cannot use sudo commands, you must configure the hosts in your network to use one of the other privileged commands.

Note: You can have different privileged commands set up for different hosts. However, Discovery supports only one privileged command per host.
Table 1. SSH privileged escalation command requirements
Command Description
sudo
pbrun
  • Host must support the pbrun -v command and return the correct version of PowerBroker.
  • Credentials provided for Discovery must be able to run pbrun <commands>. Possible SSH commands are those listed in Unix and Linux commands.
  • Discovery does not support any other pbrun - options, such as a password prompt.
  • The instance must be able to reach the target host via SSH.
pfexec
  • Host must support the pfexec id -a command and return the correct ID.
  • Credentials provided for Discovery must be able to run pfexec <commands>. Possible SSH commands are those listed in Unix and Linux commands.
  • Discovery does not support any other pfexec - options, such as a password prompt.
dzdo
  • Host must support the command –v dzdo command and return the path to dzdo in standard output.
  • Credentials provided for Discovery must be able to run dzdo <commands>. Possible SSH commands are those listed in Unix and Linux commands.
  • Discovery does not support any other dzdo – options, but Discovery supports password authentication for dzdo.