{"id":381,"date":"2017-01-05T04:06:48","date_gmt":"2017-01-04T21:06:48","guid":{"rendered":"http:\/\/www.rickyadams.com\/wp\/?p=381"},"modified":"2017-01-05T04:08:36","modified_gmt":"2017-01-04T21:08:36","slug":"adding-users-to-sudo-access","status":"publish","type":"post","link":"https:\/\/www.rickyadams.com\/wp\/adding-users-to-sudo-access\/","title":{"rendered":"Adding Users to sudo Access"},"content":{"rendered":"
\n

Procedure\u00a02.2.\u00a0Configuring sudo<\/code> Access<\/strong><\/p>\n

    \n
  1. \n
    Log in to the system as the root<\/code> user.<\/div>\n<\/li>\n
  2. \n
    Create a normal user account using the useradd<\/code> command. Replace USERNAME<\/em> with the user name that you wish to create.<\/div>\n
    #<\/code> useradd<\/code> USERNAME<\/em><\/pre>\n<\/li>\n
  3. \n
    Set a password for the new user using the passwd<\/code> command.<\/div>\n
    #<\/code> passwd<\/code> USERNAME<\/em>\r\nChanging password for user USERNAME<\/em>.\r\nNew password: \r\nRetype new password: \r\npasswd: all authentication tokens updated successfully.<\/pre>\n<\/li>\n
  4. \n
    Run the visudo<\/code> to edit the \/etc\/sudoers<\/code> file. This file defines the policies applied by the sudo<\/code> command.<\/div>\n
    #<\/code> visudo<\/code><\/pre>\n<\/li>\n
  5. \n
    Find the lines in the file that grant sudo<\/code> access to users in the group wheel<\/code> when enabled.<\/div>\n
    ## Allows people in group wheel to run all commands\r\n# %wheel        ALL=(ALL)       ALL<\/pre>\n<\/li>\n
  6. \n
    Remove the comment character (#<\/strong><\/span>) at the start of the second line. This enables the configuration option.<\/div>\n<\/li>\n
  7. \n
    Save your changes and exit the editor.<\/div>\n<\/li>\n
  8. \n
    Add the user you created to the wheel<\/code> group using the usermod<\/code> command.<\/div>\n
    #<\/code> usermod<\/code> -aG<\/code><\/em> wheel<\/code><\/em> USERNAME<\/em><\/pre>\n<\/li>\n
  9. \n
    Test that the updated configuration allows the user you created to run commands using sudo<\/code>.<\/div>\n
      \n
    1. \n
      Use the su<\/code> to switch to the new user account that you created.<\/div>\n
      #<\/code> su<\/code> USERNAME<\/em> -<\/code><\/em><\/pre>\n<\/li>\n
    2. \n
      Use the groups<\/code> to verify that the user is in the wheel<\/code> group.<\/div>\n
      $<\/code> groups<\/code>\r\nUSERNAME<\/em> wheel<\/pre>\n<\/li>\n
    3. \n
      Use the sudo<\/code> command to run the whoami<\/code> command. As this is the first time you have run a command using sudo<\/code> from this user account the banner message will be displayed. You will be also be prompted to enter the password for the user account.<\/div>\n
      $<\/code> sudo<\/code> whoami<\/code>\r\nWe trust you have received the usual lecture from the local System\r\nAdministrator. It usually boils down to these three things:\r\n\r\n    #1) Respect the privacy of others.\r\n    #2) Think before you type.\r\n    #3) With great power comes great responsibility.\r\n\r\n[sudo] password for USERNAME<\/em>:\r\nroot<\/pre>\n
      The last line of the output is the user name returned by the whoami<\/code> command. If sudo<\/code> is configured correctly this value will be root<\/code>.<\/div>\n<\/li>\n<\/ol>\n<\/li>\n<\/ol>\n<\/div>\n
      You have successfully configured a user with sudo<\/code> access. You can now log in to this user account and use sudo<\/code> to run commands as if you were logged in to the account of the root<\/code> user.<\/div>\n","protected":false},"excerpt":{"rendered":"
      Procedure\u00a02.2.\u00a0Configuring sudo Access Log in to the system as the root user. Create a normal user account using the useradd command. Replace USERNAME with the user name that you wish to create. # useradd USERNAME Set a password for the new user using the passwd command. # passwd USERNAME Changing password for user USERNAME. New password: Retype new password: passwd: all authentication tokens updated successfully. Run the visudo to edit the \/etc\/sudoers file. This file defines the policies applied by…<\/p>\n
       Read More  Read More<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[],"class_list":["post-381","post","type-post","status-publish","format-standard","hentry","category-linux"],"_links":{"self":[{"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/posts\/381","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/comments?post=381"}],"version-history":[{"count":1,"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/posts\/381\/revisions"}],"predecessor-version":[{"id":382,"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/posts\/381\/revisions\/382"}],"wp:attachment":[{"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/media?parent=381"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/categories?post=381"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.rickyadams.com\/wp\/wp-json\/wp\/v2\/tags?post=381"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}