diff --git a/Bundler/rpcssh.xml b/Bundler/rpcssh.xml
new file mode 100644
index 0000000..dafb66f
--- /dev/null
+++ b/Bundler/rpcssh.xml
@@ -0,0 +1,6 @@
+
+
+
+
+
+
diff --git a/Bundler/secrets.xml b/Bundler/secrets.xml
index 18e263b..c0fe218 100644
--- a/Bundler/secrets.xml
+++ b/Bundler/secrets.xml
@@ -11,6 +11,8 @@
+
+
diff --git a/Metadata/groups.xml b/Metadata/groups.xml
index 1607d41..3640be4 100644
--- a/Metadata/groups.xml
+++ b/Metadata/groups.xml
@@ -1041,6 +1041,11 @@
+
+
+
+
+
diff --git a/Python/etc/crans/secrets/trigger-generate b/Python/etc/crans/secrets/trigger-generate
new file mode 100644
index 0000000..9328379
--- /dev/null
+++ b/Python/etc/crans/secrets/trigger-generate
@@ -0,0 +1,4 @@
+info["perms"] = 0440
+info["owner"] = "root"
+info["group"] = "adm"
+print file("/etc/crans/secrets/trigger-generate").read()
diff --git a/Python/etc/crans/secrets/trigger-generate.pub b/Python/etc/crans/secrets/trigger-generate.pub
new file mode 100644
index 0000000..da1ea35
--- /dev/null
+++ b/Python/etc/crans/secrets/trigger-generate.pub
@@ -0,0 +1,4 @@
+info["perms"] = 0444
+info["owner"] = "root"
+info["group"] = "adm"
+print file("/etc/crans/secrets/trigger-generate.pub").read()
diff --git a/Python/etc/sudoers b/Python/etc/sudoers
index 71656dc..a4cfca4 100644
--- a/Python/etc/sudoers
+++ b/Python/etc/sudoers
@@ -90,6 +90,8 @@ if has("users"):
monit_path = '/usr/%sbin/monit' % ('' if has('wheezy') else 's')
print "%%respbats ALL=(ALL) NOPASSWD: %s summary, %s status" % (monit_path, monit_path)
+if has('generate'):
+ print "rpcssh ALL=(ALL) NOPASSWD: /usr/scripts/gestion/gen_confs/generate.py"
if has('arpwatch'):
@# arpwatch
print "arpwatch ALL=(arpwatch%s) NOPASSWD:/usr/scripts/surveillance/arpwatch_sendmail.py" % (addit)
diff --git a/Python/var/local/rpcssh/.ssh/authorized_keys b/Python/var/local/rpcssh/.ssh/authorized_keys
new file mode 100644
index 0000000..d17fb2a
--- /dev/null
+++ b/Python/var/local/rpcssh/.ssh/authorized_keys
@@ -0,0 +1,12 @@
+# -*- mode: python; encoding: utf-8 -*-
+
+info["owner"] = "rpcssh"
+info["group"] = "users"
+info["perms"] = 0644
+
+comment_start = "#"
+
+header("Clef pour lancer des commandes en temps réel sur les serveurs")
+
+if has("generate"):
+ print 'command="sudo /usr/scripts/gestion/gen_confs/generate.py",from="10.231.136.0/24,2a01:240:fe3d:c804::/64",no-agent-forwarding,no-port-forwarding,no-pty,no-user-rc,no-X11-forwarding %s' % open('/etc/crans/secrets/trigger-generate.pub').read()
diff --git a/Rules/rpcssh.xml b/Rules/rpcssh.xml
new file mode 100644
index 0000000..658d5a9
--- /dev/null
+++ b/Rules/rpcssh.xml
@@ -0,0 +1,13 @@
+
+
+
+
+
+
+
+
+
+
+