<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-M74D8PB" height="0" width="0" style="display:none;visibility:hidden">
Loading
Skip to NavigationSkip to Main Content
System Status
Announcements
Announcements
Search
Search
Select Language
Knowledge Base
Knowledge Articles
Support Videos ↗
Documentation
Product Documentation ↗
Developer Documentation ↗
Product Release Notes ↗
Community
Events & Webinars
Okta Ideas ↗
Resources
Product Hub
Customer Success Hub
Product Release Update
Learning
Okta Learning ↗
Get Support
Open a Case
HomeKnowledge Base
Configure a User with Sudo Privileges to Run any Command as a Privileged User using Sudo Entitlement in ASA
Sep 3, 2025
Advanced Server Access
Okta Classic Engine
Okta Identity Engine
Overview

This article describes how to configure a user with sudo privileges to run any command as a privileged user using sudo entitlement in ASA. It can also be achieved without configuring entitlements by assigning admin privileges to the users through group assignments.

NOTE: It is recommended to use specific commands/directories, etc., through sudo entitlements since ANY has the potential for the users to become root. 

Applies To
  • Advanced Server Access (ASA)
  • Sudo entitlement
Solution

Please follow these steps:

  1. Configure sudo entitlement with the RAW option and "ALL" as the sub-option. See screenshot below: 

Update Sudo Entitlement

  1. Assign the newly created sudo entitlement to the group by going to Projects > Groups > select the group to which the entitlement should be added.

Projects

  1. Then, under the Group Entitlements section > click on Add Sudo Entitlement Binding button.

Group Entitlements

  1. sft ssh to the ASA-managed host and run the following command: sudo -ui <sudo user>.

 

Related References

Recommended content

Still looking for help?
Loading
Configure a User with Sudo Privileges to Run any Command as a Privileged User using Sudo Entitlement in ASA