Learn Linux
Learn Linux
Learn Linux
Learn Linux
#whoami
CompTIA Linux+ (XK0-004)
Managing Users and Groups
Becoming a Linux System Admin
The Root User Account
Administrative Commands
Linux Kernel Modules and Peripherals
PluralSight - System Admin
Learning the Essentials of CentOS Enterprise Linux 7 Administration
Red Hat Enterprise Linux
Systemd
Software Updates
Basics of Linux
1. Working with the Shell
2. Working with Directory
3. Managing The Linux Boot Process
4. Installing Software with RPM
5. Installing Packages with YUM
5.5 Installing Packages with APT & Deb
6. Installing Packages from Source Code
7. Managing Users and Groups
8. Managing Permissions
9. Disk and File System Management
10. Linux Process Management
Linux Fundamentals
1. Using Essentials Tools
2. Working With Files
3. Connecting to a Server
4. Working with Bash Shell
5. User and Group Management and Permissions
6. Permission Management
Installation-Guide
[Solved] Problem Installing CentOS-8 in Virtualbox-6.1
Linux Configuration Tutorial
Enable eth1 interface in Kali Linux
Enable SSH in Kali
Start VirtualBox VM in Headless Mode
VMware Tools Installation Error: Not Enough Disk Space
Missing Kernel headers when installing vmware?
VirtualBox gets stuck with a black screen
Start VirtualBox VM in Headless Mode
Installing Docker in CentOS 7
Installing Docker in Kali
Windows Subsystem Error
How to speed up Kali upgrade and update?
Uninstall GRUB and use Windows bootloader
No wired connection - No Internet - on RedHat
Rsync - Sync Files Locally and Remotely
More Resources
Invaluable Resources
DevOps From Scratch
Git and Github
Git and Github
Learn Docker and Kubernates
1. What is Docker?
2. What is Kubernetes?
Miscellaneous
What is the difference between .bash_profile and .bashrc?
What's . and .. in Linux?
Tips and Tricks
Command Substitution
DevOps From Scratch
Configuring Key-based SSH
Learning Nginx
Powered by GitBook

5. User and Group Management and Permissions

Creating Users

Users are a entity in Linux system that are provided certain permissions to access resources. Users can be service accounts as well.

Let's create a user in the wheel group, so he/she can use that with sudo.

  • Usually, useradd is used in Red Hat systems for creating users.

useradd -c "the friend" -G wheel amit; passwd -e amit

  • Usually, adduser username is used for Debian (or Ubuntu) based systems.

Adding Groups

Note:

If you are setting up user environment for users, and

  • If you know in advance that these people need to be member of certain groups, start by creating groups first and it is easier to assign to users to the group.

  • If you create the users first then you need to modify the users to assign to those groups which involves a little more work.

# groupadd groupname
​
groupadd marketing
groupadd sales

Adding a user to a supplementary (secondary) group:

  • -a => appends to

  • -G => a new list of groups

Getting more info about a user

Understanding Default to New User

When creating a new user, default settings are applied that come from different sources:

  • useradd -D can be used from the command line

  • /etc/login.defs is used as the default configuration file

  • /etc/skel contents is copied to user home directory upon user creation

    • So, if you create a new file company-policy.pdf in this directory, every subsequent users created afterwards will get the company-policy.pdf along with other files in the users home directory.

  • Linux does not offer an easy solution to apply new defaults to previously created users. (but it is possible using some scripting)

useradd -D shows the default settings:

It is kind of an old method and sometimes gives unreliable information. The best way to check the setting is to check /etc/login.defs.

The useradd -D comes from /etc/default/useradd:

You can change this file as per your requirement:

Looking at the /etc/login.defs file

Below we have PASS_MAX_DAYS 99999 to 99:

Now you can see the setting applied as I created a new user:

Notice 99

  • Also notice that !! means no password set yet.

Managing Password

echo password | passwd --stdin username

LAB

LAB SOLUTION

Let's tackle the Lab in a different order. Let's start by 1. setting their passwords to expire after 60 days in: vim /etc/login.defs

  • Changing the password from 99 days to 60 days

2. Ensuring all these users get a home directory in /home.

  • By default, /home directory is set for new users.

  • If it is not set, please change it here: sudo vim /etc/default/useradd

3. Adding three groups namely sales, accounts, and users. Ignore in my case the groups already exist:

Adding groups

4. Creating users and adding to the groups:

Setting a password as password

However, there is a fancier way of doing the same for many users at once:

Linux Fundamentals - Previous
4. Working with Bash Shell
Next - Linux Fundamentals
6. Permission Management
Last updated 8 months ago
Contents
Creating Users
Adding Groups
Getting more info about a user
Understanding Default to New User
useradd -D shows the default settings:
Managing Password
LAB
LAB SOLUTION