runas

[anonymous]

It would be great if i can run each command from the NRPE Handlers with a different user like runas. Not all commands runs proberly with user system that is used for NSClient++ service. The password for the user in NSC.ini should be encrypted.
I have tried some other tools like "Encrypted Runas" together with NSClient++, but found no solution and not very practical.

[mickem]

First off, this could be doable, the "hard thing" is to figure out to how to add "options" for it, the ini file is getting "filled up".
but I think I could do a:

<command>=<the command>
<command>_user=<user>
<command>_password=<user>

As for encrypted, that is "impossible" (sort of) you could get them obfuscated, but since I need to "read them" it will be possible for others to do so as well (unless you do some "advanced" stuff).
But perhaps you meant obfuscated?

MickeM

[anonymous]

Yes, you are right i meant obfuscated.
Thanks

[anonymous]

Wish runas too. It's possible to implement it with 0.3.4? ;-)
CU

[mickem]

it would clobber down the settings subsystem too much so I would rather add it after the re-worked settings system in 0.4.x)

MickeM

[mickem]

Added support for this like so:

[/settings/external scripts/scripts/test_user]
command=cmd /c "dir c:\windows\system32"
user=foobar
password=barfoo

This will be in RC3 (or next nightly build)