Hi all,
we are using HANA database on NAS storage and build our own Storage Connector according the SAP specifications. It requests an entry in /etc/sudoers file for each <sid>adm user. Whenever I introduce a new HANA system I have to modify the /etc/sudoers file. I think this should be changed to
Cmd_Alias HANANAS = <path to connector implementations>/<connectorApi>
User_Alias CONNUSR = %hanaConnectorUser
CONNUSR ALL=(root) NOPASSWD: HANANAS
Whenever a new HANA is installed I would have to add the user <sid>adm to the group hanaConnectorUser. /etc/sudoers is a very critical file which may make your system inoperable if there are invalid entries. Adding a user to an existing group is more easy and does not cause problems with an invalid content in /etc/sudoers file.
We are working in an infrastructure solution (FlexFrame for SAP) with a shared OS image (/root is read only) and this makes it additonally difficult to change /etc/sudoers file for each new HANA installation.
What do you think about ?
kind regards
Karlheinz