From bdbdefa129e0a98eeb0834df0e5f811c3adf10a4 Mon Sep 17 00:00:00 2001
From: A Holt <holta@users.noreply.github.com>
Date: Tue, 20 Sep 2022 21:37:57 -0400
Subject: [PATCH] sshpwd-lxde-iiab.sh.j2: 'sudo -n' avoids pwd prompts

---
 roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2 | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2 b/roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2
index e61f4dfec..e755bd638 100755
--- a/roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2
+++ b/roles/iiab-admin/templates/sshpwd-lxde-iiab.sh.j2
@@ -26,7 +26,7 @@ check_user_pwd() {
 
     # 2021-08-28: New OS's use 'yescrypt' so use Perl instead of Python (#2949)
     # This also helps avoid parsing the (NEW) 4th sub-field in $y$j9T$SALT$HASH
-    field2=$(sudo grep "^$1:" /etc/shadow | cut -d: -f2)
+    field2=$(sudo -n grep "^$1:" /etc/shadow | cut -d: -f2)
     [[ $(perl -e "print crypt('$2', '$field2')") == $field2 ]]
 
     # # $meth (hashing method) is typically '6' which implies 5000 rounds