- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - Linux
- >
- Re: how to make an ordinary user, the SysAdmin
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Forums
Discussions
Discussions
Discussions
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-20-2004 06:19 AM
07-20-2004 06:19 AM
plz help... how can I assign all Administrative Rights to a normal/ordinary user, i.e what Shoud I have to do in order to make a normal user Administrator of the System. I have to assign all admin power to a user named 'marshal', and I m the root user of the system.
In windows 2K, its so simple, we simple add that normal user to Administrators Group, then that normal user automatically becomes the Most Powerful user of the System.
Peace,
Maaz
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-20-2004 07:05 AM
07-20-2004 07:05 AM
Solution#Add this line:
%wheel ALL=/usr/bin/su - root
vi /etc/groups
#Add the user the group "wheel"
and then the user can:
$ sudo su - root
and then he enters his passwd.
Voila! he's root.
Or more simple than that: give him the root passwd.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-20-2004 05:36 PM
07-20-2004 05:36 PM
Re: how to make an ordinary user, the SysAdmin
to the wheel group:
Modify /etc/group and change the wheel line:
wheel:x:10:root,marshal
And edit /etc/pam.d/su and remove the hash
mark from the line:
auth sufficient /lib/security/$ISA/pam_wheel.so trust use_uid
Then the user can have root privileges just
by giving the command "su", without a password.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-21-2004 12:42 AM
07-21-2004 12:42 AM
Re: how to make an ordinary user, the SysAdmin
I'm not saying you should do this though, because as soon as you give a user the kind of rights you want to, it doesn't matter how you do it, your security, logging and everything no longer means much at all. You may as well just give them the root password as mentioned above.
Having said all this, you might want to investigate "capabilities".
http://www.kernel.org/pub/linux/libs/security/linux-privs/kernel-2.2/capfaq-0.2.txt
This allow fine grained control of permissions. For example, a user can have root access only for the period that they are doing a "mount". The rights are dropped immediately afterwards. This allows you to give a user much the same rigthts as root but without giving them the ability to alter "sudo" configurations and log files etc etc
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-22-2004 07:09 AM
07-22-2004 07:09 AM
Re: how to make an ordinary user, the SysAdmin
and Maany Thanks for the invaluable support
One More Question Gurus....
In windows, there is a group called Backup Operators, if a user belongs to Backup Operator, then he/she can take backup of any files/folders, even he/she can take backup of those files/folder on which he/she dont have even the read permission.
In Linux, What should I have to do, if I want to assign Backup Rights to an ordinary user, so that he/she can take backup of any files and folder under /home/.
Once again Many Thanks Olivier Drouin, Mogens Kjaer, and Mark Grant, for ur kind responses.
Peace
Maaz
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-22-2004 04:34 PM
07-22-2004 04:34 PM
Re: how to make an ordinary user, the SysAdmin
Thanks in adv
Peace
Maaz
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-22-2004 05:17 PM
07-22-2004 05:17 PM
Re: how to make an ordinary user, the SysAdmin
There is an ordinary(noon-root), user named marshal, to whome I(root), just want to give the right to take Backup of any files/folder under /home/. so that I would be free from taking Backup of every user's Home Diectory.
In other words what should I do, so that marshal becomes just Backup Admin, but not the System Admin.
Many Thanks
Peace
Maaz
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-22-2004 05:46 PM
07-22-2004 05:46 PM
Re: how to make an ordinary user, the SysAdmin
I would set up a backup utilisty like amanda or mondo, and grant mondo user a password, that would be given to your backup operator...
http://www.microwerks.net/~hugo/
But why don't you use a cron job just to automate backup ? No need to grant privilege, no need to remember to ask if backup's been done, easy setup...
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-22-2004 06:09 PM
07-22-2004 06:09 PM
Re: how to make an ordinary user, the SysAdmin
I think it is no possible to read files for an ordinary user if it have not read permissions.
Your best choice is the Jerome answer, this is install a backup software and set permissions only to a virtual user and/or manage backups through cron jobs.
Frank
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-23-2004 01:22 AM
07-23-2004 01:22 AM
Re: how to make an ordinary user, the SysAdmin
man sudo
man sudoers
just choose a backup program ( like 'dump' ) and assign the rights to execute it as root to your user.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-23-2004 07:33 AM
07-23-2004 07:33 AM
Re: how to make an ordinary user, the SysAdmin
Francisco Soler, many thanks for ur response.
Olivier Drouin, Once again many thanks for ur kind support. Olivier Drouin, could u please write me the exact syntax /etc/sudoers, I m using tar.
Many Thanks
Maaz
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-23-2004 07:34 AM
07-23-2004 07:34 AM
Re: how to make an ordinary user, the SysAdmin
Many Thanks
Maaz
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
07-25-2004 06:19 AM
07-25-2004 06:19 AM
Re: how to make an ordinary user, the SysAdmin
Infact here we are not using Amanda or mondo. We are using tar. Yes ur idea is good that is I can also set cron to take backups, but as u know that backup requirement are frequently changed, sometimes the whole /home backup is needed, but sometimes only the backup of /home/jasica/ is needed.
Maaz,
how many such users u have like this.
Plan:
What are all the directories u have to backup.
Frequency of the backup.
By this you will get an idea which to backup & when. There are options in tar for incremental backups. I use tar too. Once in a week a full backup and incremental backup on week days would be a ideal choice.
HTH,
SK