Nagios Support Forum

gormank wrote:I guessed the debugging was to be done on the nagios server since rsyslog isn't used on monitored servers...

Skip all the rsyslog nonsense and just enable debugging on the monitored server (nrpe.cfg) then look for related entries in /var/log/messages.

I already did that and posted the results:

Sep 10 21:18:14 txslm2mlapp002 nrpe[21169]: INFO: SSL/TLS initialized. All network traffic will be encrypted.

The following line isn't in my sudoers file. Maybe the sudo upgrade has an issue with this line overriding the other line.
Try removing that and see if the works.

gormank wrote:I already did that and posted the results:

Sep 10 21:18:14 txslm2mlapp002 nrpe[21169]: INFO: SSL/TLS initialized. All network traffic will be encrypted.

My apologies - I misunderstood your statement.

I commented the following 2 lines, tested and no change.
Defaults requiretty
Defaults !visiblepw
I then commented the last line and tested. Still no change...
Defaults:nagios !requiretty
I added the following, tested and no change.
nagios ALL=(ALL) NOPASSWD: ALL
Removed the changes to put things back to original.

I did a tail -f /var/log/audit/audit.log while running the failing check, and nonfailing ones. Nothing logged.

What's next?

What is the output when you run these commands on it?

Woops, sorry, looks like you already did that in your first post.

Please PM or attach your entire /etc/sudoers and entire nrpe.cfg

Yep, the commands work fine as the nagios user.
Files attached...

I checked to see is selinux might be the denying but only see 2 entries that appear not to be related.
sealert -a /var/log/audit/audit.log

I guess next on my end is checking to see if its the AD integration, once I figure out how.

Can you try commenting out the "Defaults requiretty" line (line 56), so that it would look like this:
Let us know if this helped.

No change.