I work at a company and many employees have access to our sensu server. In the /etc/sensu/conf.d file, we have json files that contain the commands for our checks to run. however, some of these commands contain sensitive information that i don't want other users to be able to see. what would be the best way to hide the information in the commands?
If people only have access to your sensu server and not the clients you can pass the passwords as a client custom parameter. This way they will be stored in the client config file on the client and not to be seen on the server.