I'm working on finalizing an implementation of an ansible poc for a new project, and as part of this poc our security team has asked for a minimal sudoers configuration for the ansible automation user.
I'm currently using a "anything anywhere" type configuration, but looking at sudo logs I don't believe I need this. Is there a project recommended minimal configuration for sudoers to allow only ansible commands? Browsing the documentation and mailing list nothing stood out, but maybe I missed it. -- You received this message because you are subscribed to the Google Groups "Ansible Project" group. To unsubscribe from this group and stop receiving emails from it, send an email to [email protected]. To post to this group, send email to [email protected]. To view this discussion on the web visit https://groups.google.com/d/msgid/ansible-project/3e27dec6-b218-4722-a961-5d91afe0213e%40googlegroups.com. For more options, visit https://groups.google.com/d/optout.
