Merge pull request #9917 from Ranjandas/docs/exec-cmd-acl

Document agent token policy requirement for rexec
This commit is contained in:
Daniel Nephin 2021-03-25 17:49:47 -04:00 committed by GitHub
commit 7e03670b1c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 2 additions and 0 deletions

View File

@ -41,6 +41,8 @@ execute this command.
| `key:write` | `"_rexec"` prefix |
| `event:write` | `"_rexec"` prefix |
In addition to the above, the policy associated with the [agent token](https://www.consul.io/docs/security/acl/acl-system#acl-agent-token) should have `write` on `"_rexec"` key prefix. This is for the agents to read the `exec` command and write its output back to the KV store.
## Usage
Usage: `consul exec [options] [-|command...]`