Lab
A Cloud Guru

Managing sudo Access

In this lab, we will look at how to manage access to `sudo`. We will strengthen `sudo` security by removing unnecessary default settings and configure `sudo` to always require a password. Then, we'll permit specific user accounts to use `sudo`. *This course is not approved or sponsored by Red Hat.*

Try for free Contact sales

Path Info

Level

Intermediate

Duration

30m

Published

May 17, 2019

Challenge

Disable the Use of the `wheel` Group in the `sudoers` File
Comment out the following line in the /etc/sudoers file:
```
%wheel  ALL=(ALL)       ALL 
```
Challenge

Provide Full `sudo` Access to `cloud_user`, `pbeesly`, and `jhalpert`
Add the following lines to the /etc/sudoers file:
```
cloud_user  ALL=(ALL)       ALL
pbeesly     ALL=(ALL)       ALL
jhalpert    ALL=(ALL)       ALL
```
Challenge

Configure `sudo` to Require a Password Each Time the `sudo` Command Is Used
To require a password each time sudo is used, add the following line to the /etc/sudoers file:
```
Defaults    timestamp_timeout=0
```

Author

A Cloud Guru

The Cloud Content team comprises subject matter experts hyper focused on services offered by the leading cloud vendors (AWS, GCP, and Azure), as well as cloud-related technologies such as Linux and DevOps. The team is thrilled to share their knowledge to help you build modern tech solutions from the ground up, secure and optimize your environments, and so much more!

What's a lab?

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.