Feature Request: Passwordless Sudo

By Rajat Bhargava Posted February 27, 2014

http://cdn.morguefile.com/imageData/public/files/c/click/preview/fldr_2008_11_08/file0001921573109.jpg

We recently had a feature request for our Directory-as-a-Service® platform on a topic that we had just discussed here on the blog. We were asked to include the ability to sudo without a password into servers. While sudo into a box is a more secure mechanism, passwordless sudo may actually be necessary – often for service accounts that run as root.

JumpCloud’s initial functionality was to require a password to sudo into the box even if keys were present. This created a strong multi-factor auth of sorts with something you had (keys) and something you knew (password). That approach is ideal for key servers and situations where security is critical. In cases where automated processes are logging in and executing processes or commands, a passwordless sudo option is an excellent feature to have.

Give passwordless sudo a try on some of your servers and see if it helps ease some of the pain around your user management functions. And, if you would like to leverage JumpCloud’s cloud-based directory service for the rest of your organization, please take a look. We’ve centralized users management and included incredible features such as LDAP-as-a-Service, True Single Sign-On™, RADIUS-as-a-Service, device management, multi-factor authentication, and more. Let us know what you think!

Rajat Bhargava

Rajat Bhargava is co-founder and CEO of JumpCloud, the first Directory-as-a-Service (DaaS). JumpCloud securely connects and manages employees, their devices and IT applications. An MIT graduate with two decades of experience in industries including cloud, security, networking and IT, Rajat is an eight-time entrepreneur with five exits including two IPOs, three trade sales and three companies still private.

Recent Posts