Configuring User Accounts and Permissions on a Development Server

30 minutes
  • 5 Learning Objectives

About this Hands-on Lab

In this hands-on lab, you will connect to a Red Hat 8 system using SSH. Once connected, you will use the `useradd` command to add several users, set passwords using the `passwd` command, use the `groupadd` command to add a couple of groups, and use either the `usermod` or `gpasswd` commands to add users to groups. Once the groups are in place, you will grant elevated privileges to a set of users using the new groups and test the permissions by using the `su -` command to switch to a user and attempt to run the commands.

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Add 5 Users to the System
  • Add the following user accounts to the system. Set the comment option to the user’s full name.
    • Peter Gibbons (pgibbons)
    • Michael Bolton (mbolton)
    • Samir Nagheenanajar (snagheenanajar)
    • Milton Waddams (mwaddams)
    • Tom Smykowski (tsmykowski)
  • Use the passwd command to set to the default password of initech123 for all users.
Add 2 Groups to the System
  • Use the groupadd command to add the following groups.
    • devadmins
    • helpdesk
Add Users to the New Groups
  • Use either the usermod or gpasswd command to add the following user accounts to the devadmins group.
    • Peter Gibbons
    • Michael Bolton
    • Samir Nagheenanajar
  • Use either the usermod or gpasswd command to add the following user accounts to the helpdesk group.
    • Milton Waddams
    • Tom Smykowski
Grant Superuser Privileges Using the New Groups
  • Use the visudo command to create a new file in the /etc/sudoers.d directory and call the file 20-groups.
  • Add the following group configurations into the file
    • The devadmins group should be able to connect from any host, act as the root user and be able to run any command.
    • The helpdesk group should be able to connect from any host, act as the root user and only run the ls and cat commands.
Validate Superuser Access for Two of the Accounts, One from Each Group
  • Use the su - command to switch to one of the users from the devadmins group and attempt to run the following commands with elevated (sudo) privileges.
    • List the contents of the root user’s home directory
    • Use the cat command to view the /etc/sudoers file
    • Use the less command to view the /etc/sudoers file.
    • Exit the previous user and return to your account
  • Use the su - command to switch to one of the users from the helpdesk group and attempt to run the following commands with elevated (sudo) privileges.
    • List the contents of the root user’s home directory
    • Use the cat command to view the /etc/sudoers file
    • Use the less command to view the /etc/sudoers file.

Additional Resources

SCENARIO:

You are finalizing the build out of a new server for the development team. The final steps in the process are to build out the users and groups on the system and validate access. The build process did not complete successfully on a new development system so one of the senior administrators has asked you to complete the two failed steps.

To complete the server build and deliver it to the development team, you will need to

  • Add users to the system
  • Add groups to the system
  • Add users to the appropriate groups
  • Assign superuser privileges using the new groups
  • Validate superuser access for the new user accounts <br>

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Get Started
Who’s going to be learning?

How many seats do you need?

  • $499 USD per seat per year
  • Billed Annually
  • Renews in 12 months

Ready to accelerate learning?

For over 25 licenses, a member of our sales team will walk you through a custom tailored solution for your business.


$2,495.00

Checkout
Sign In
Welcome Back!

Psst…this one if you’ve been moved to ACG!