dzdo

privileged command execution with Active Directory

TLDR

Run command as root

$ dzdo [command]

Run as specific user

$ dzdo -u [username] [command]

Run with login shell

$ dzdo -i

Run a root shell

$ dzdo -s

List user's permissions

$ dzdo -l

dzdo is Centrify's replacement for sudo, providing privileged command execution with Active Directory integration. It allows users to run commands as root or other users based on centralized policy.dzdo integrates with Centrify's DirectControl for unified identity management across Unix/Linux and Windows systems. Policies are managed in Active Directory rather than local sudoers files.The tool provides similar functionality to sudo but with enterprise authentication and authorization features.

PARAMETERS

COMMAND

Command to execute with elevated privileges.

-u USER

Run as specified user.

-i

Run login shell.

-l

List allowed commands.

-s

Run a shell instead of a specific command.

-n

Non-interactive (no password prompt).

-H

Set the HOME environment variable to the target user's home directory.

-k

Invalidate the user's cached credentials.

-v

Validate/extend credentials without running a command.

-V

Display version information.

CONFIGURATION

/etc/centrifydc/centrifydc.conf

Centrify DirectControl configuration controlling AD integration and authentication settings.

CAVEATS

Requires Centrify DirectControl. Policies managed centrally in AD. May have different behavior than sudo in edge cases. Enterprise licensing required.

HISTORY

dzdo is part of Centrify DirectControl (now Delinea), providing sudo-compatible privilege elevation with Active Directory integration for enterprise environments.