[sudoers] add /usr/local/bin/storyteller to READ_ONLY_CMDS (sonic…

…-net#13422) Adding /usr/local/bin/storyteller to READ_ONLY_CMDS. So no write access or prompt for password is needed to run storyteller. Tested on 202205 clusters, user who didn't request write access was able to grep log using storyteller. sign-off: Jing Zhang zhangjing@microsoft.com
richardyu-ms · Feb 7, 2023 · 5b64d82 · 5b64d82
1 parent f9d0f25
commit 5b64d82
Showing 1 changed file with 2 additions and 1 deletion.
diff --git a/files/image_config/sudoers/sudoers b/files/image_config/sudoers/sudoers
@@ -42,7 +42,8 @@ Cmnd_Alias      READ_ONLY_CMDS = /bin/cat /var/log/syslog*, \
                                  /usr/local/bin/pcieutil *, \
                                  /usr/local/bin/psuutil *, \
                                  /usr/local/bin/sonic-installer list, \
-                                 /usr/local/bin/sfputil show *
+                                 /usr/local/bin/sfputil show *, \
+                                 /usr/local/bin/storyteller *
 
 
 Cmnd_Alias      PASSWD_CMDS = /usr/local/bin/config tacacs passkey *, \