Managing sudo Access

In this lab, we will look at how to manage access to `sudo`. We will strengthen `sudo` security by removing unnecessary default settings and configure `sudo` to always require a password. Then, we’ll permit specific user accounts to use `sudo`.

*This course is not approved or sponsored by Red Hat.*

Learning Objectives

Successfully complete this lab by achieving the following learning objectives:

Disable the Use of the `wheel` Group in the `sudoers` File

Comment out the following line in the /etc/sudoers file:

%wheel  ALL=(ALL)       ALL

Provide Full `sudo` Access to `cloud_user`, `pbeesly`, and `jhalpert`

Add the following lines to the /etc/sudoers file:

cloud_user  ALL=(ALL)       ALL
pbeesly     ALL=(ALL)       ALL
jhalpert    ALL=(ALL)       ALL

Configure `sudo` to Require a Password Each Time the `sudo` Command Is Used

To require a password each time sudo is used, add the following line to the /etc/sudoers file:

Defaults    timestamp_timeout=0

What are Hands-on Labs

Hands-on Labs are real environments created by industry experts to help you learn. These environments help you gain knowledge and experience, practice without compromising your system, test without risk, destroy without fear, and let you learn from your mistakes. Hands-on Labs: practice your skills before delivering in the real world.

Managing sudo Access

About this Hands-on Lab

Learning Objectives

Additional Resources

What are Hands-on Labs

Newsletter