HPE Community
Operating System - Linux
1828663 Members
1461 Online
109984 Solutions
New Discussion

Is root the only user to create users or change passwords of others

 
SOLVED
Go to solution
yyghp
Super Advisor

‎05-09-2005 10:44 AM

‎05-09-2005 10:44 AM

Is root the only user to create users or change passwords of others

Is it possible that I can have a user other than "root", which will be used by another guy, who can help me to manage users, such as create another users, change their password, etc... ?

Thanks !
0 Kudos
Reply
8 REPLIES 8
Kodjo Agbenu
Honored Contributor

‎05-09-2005 10:46 AM

‎05-09-2005 10:46 AM

Solution

Re: Is root the only user to create users or change passwords of others

Hi,

sudo is your friend (man sudo, man sudoers).

Good lcuk.
Kodjo
Learn and explain...
Reply
Gopi Sekar
Honored Contributor

‎05-09-2005 05:35 PM

‎05-09-2005 05:35 PM

Re: Is root the only user to create users or change passwords of others


use sudo if you want to give rights for users to run a particular application in root access

use file permissions(user/group) to give rights for users to access a particular file

use sticky executable bit permission to run a particular application with root access

Gopi
Never Never Never Giveup
Reply
Wim Van den Wyngaert
Honored Contributor

‎05-09-2005 10:36 PM

‎05-09-2005 10:36 PM

Re: Is root the only user to create users or change passwords of others

Use sudo for the command /usr/sbin/vipw
but do man vipw first.

Wim
Wim
0 Kudos
Reply
Steven E. Protter
Exalted Contributor

‎05-10-2005 12:31 AM

‎05-10-2005 12:31 AM

Re: Is root the only user to create users or change passwords of others

You can authorize other users to do it with sudo.

You can have more than one root user, but that is a really, bad idea from the security standpoint.

SEP
Steven E Protter
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
0 Kudos
Reply
HGN
Honored Contributor

‎05-10-2005 04:42 AM

‎05-10-2005 04:42 AM

Re: Is root the only user to create users or change passwords of others

Hi

Well by this time you should have had the solution since others have already mentioned

It is a bad idea to have another root equivalent id(security risk)
sudo(root brokering tool) can give root access.

Rgds

HGN
0 Kudos
Reply
Ross Minkov
Esteemed Contributor

‎05-11-2005 12:00 PM

‎05-11-2005 12:00 PM

Re: Is root the only user to create users or change passwords of others

sudo is your tool as everyone else already said. Just remember the /etc/sudoers file MUST be edited with the 'visudo' command as root. /etc/sudoers has the list of who can run what.

Add something like this:

User_Alias usermgt = user1, user2

Cmnd_Alias USERMGT = /usr/bin/chfn, /usr/bin/chsh, /usr/bin/passwd, /usr/sbin/groupadd, /usr/sbin/groupdel, /usr/sbin/groupmod, /usr/sbin/useradd, /usr/sbin/usermod
(note that the above should be one line; also I just picked some commands, you might want to cusomize the list per your requirements)

accmgt ALL = USERMGT

HTH,
Ross
0 Kudos
Reply
Devesh Pant_1
Esteemed Contributor

‎05-11-2005 04:52 PM

‎05-11-2005 04:52 PM

Re: Is root the only user to create users or change passwords of others

A good use of restricted SAM can be of help
Sudo is a third party ( shareware ) software not supported by HP.

thanks
Devesh
0 Kudos
Reply
Ross Minkov
Esteemed Contributor

‎05-11-2005 05:26 PM

‎05-11-2005 05:26 PM

Re: Is root the only user to create users or change passwords of others

Devesh,

> A good use of restricted SAM can be of help
This is the LINUX forum man. Not HPUX.

> Sudo is a third party ( shareware ) software
Sudo is FREE software. And btw, third party software is not the same as shareware.

> not supported by HP.
Are you talking about HPUX?

I think a good 90% if not more of all Linux installations out there have sudo installed.

Regards,
Ross
0 Kudos
Reply
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.