Starting Talend JobServer without sudo - 7.1

Talend Big Data Platform Installation Guide for Linux
EnrichVersion
7.1
EnrichProdName
Talend Big Data Platform
EnrichPlatform
Talend Activity Monitoring Console
Talend Administration Center
Talend Artifact Repository
Talend CommandLine
Talend Data Preparation
Talend Data Stewardship
Talend DQ Portal
Talend Identity and Access Management
Talend Installer
Talend JobServer
Talend Log Server
Talend Repository Manager
Talend Runtime
Talend SAP RFC Server
Talend Studio
task
Installation and Upgrade
The user that starts Talend JobServer needs to be allowed to start processes as other users without having to enter a password.

Procedure

  1. Change the sudoers file on the machine that runs Talend JobServer, using the following command: 
    sudo visudo
  2. Edit the sudoers: 
    # ...
# User alias specification
User_Alias JOB_SERVER = jerry

# Cmnd alias specification
Cmnd_Alias RUN_JOB = /bin/ps, /usr/bin/java, /bin/sh, /bin/grep, /bin/kill

# ...
# Add after the line: %sudo	ALL=(ALL:ALL) ALL
JOB_SERVER      ALL=(jules,jim) NOPASSWD: RUN_JOB

    In this example, it is assumed that user jerry will start Talend JobServer and jobs may have to run under the existing users jules and jim.

    The Talend JobServer process started by jerry will need to be able to execute the commands /bin/ps, /usr/bin/java, /bin/sh, /bin/grep and /bin/kill as jules or jim. For security reasons, do not allow more commands.

Results

To start Talend JobServer, the Talend JobServer user could just run sh start_rs.sh instead of sudo sh start_rs.sh.