Creating a restricted shell user?

RJF_Lifetime

New Member
Dec 12, 2019
2
0
1
Hello,
I'm trying to implement some secure automation by creating a PAM user that can only run qm commands. Currently, the user can only run commands in their home directory, but softlinking qm into that directory gives the following error.
Code:
ipcc_send_rec[1] failed: No such file or directory
ipcc_send_rec[2] failed: No such file or directory
ipcc_send_rec[3] failed: No such file or directory
please run as root
Is there a way to run qm without having root privileges?
Many thanks.
 
no, the CLI tools are all root-only (they use the perl code directly, and much of that code needs to be privileged to access storage, create network devices, etc.pp.).
 
no, the CLI tools are all root-only (they use the perl code directly, and much of that code needs to be privileged to access storage, create network devices, etc.pp.).
Perfect, thank you for a prompt and clear answer. We found that we can achieve what we want by giving the account sudo access to only the commands we want, in this case qm.