Manage root privileges for users on Red Hat Azure VM2019 Community Moderator Electionyum install in user home for non-adminsWhat version of Red Hat is used for the Red Hat Certified System Administrator Exam?RED HAT LOGIN problem with rootCompiling for Red Hat 5.9RHEL 7 (CentOS 7) security / ssh / sshd_config advise requestedHow do I install some required libraries for a program without sudo?How to register a Red Hat 5.9 SystemHow to remove line wrapping from DNF & YUM commands?Red Hat disk utility only works for root, no sudoer?Giving users scheduling privilegesHow to keep password aging but disable password “inactive”?

What is the meaning of "You've never met a graph you didn't like?"

Why is "la Gestapo" feminine?

What is the tangent at a sharp point on a curve?

Relations between homogeneous polynomials

How do you say "Trust your struggle." in French?

Can you describe someone as luxurious? As in someone who likes luxurious things?

Taking the numerator and the denominator

Why is participating in the European Parliamentary elections used as a threat?

When is the exact date for EOL of Ubuntu 14.04 LTS?

Is there a distance limit for minecart tracks?

Rendered textures different to 3D View

Would this string work as string?

Unfrosted light bulb

Not hide and seek

What is the purpose of using a decision tree?

"Marked down as someone wanting to sell shares." What does that mean?

1 John in Luther’s Bibel

How can I, as DM, avoid the Conga Line of Death occurring when implementing some form of flanking rule?

Travelling in US for more than 90 days

How to split IPA spelling into syllables

How to test the sharpness of a knife?

New Order #2: Turn My Way

How to get directions in deep space?

Friend wants my recommendation but I don't want to give it to him



Manage root privileges for users on Red Hat Azure VM



2019 Community Moderator Electionyum install in user home for non-adminsWhat version of Red Hat is used for the Red Hat Certified System Administrator Exam?RED HAT LOGIN problem with rootCompiling for Red Hat 5.9RHEL 7 (CentOS 7) security / ssh / sshd_config advise requestedHow do I install some required libraries for a program without sudo?How to register a Red Hat 5.9 SystemHow to remove line wrapping from DNF & YUM commands?Red Hat disk utility only works for root, no sudoer?Giving users scheduling privilegesHow to keep password aging but disable password “inactive”?










0















We have set up a Red Hat VM on Azure, but we are unsure how we could deal with user privileges. We want to use the VM to test software in a Linux environment as opposed to the Windows workstations that we have.



We would like to have two user groups:



1) admin Account



2) user Accounts: They need to be able to install packages via yum, but should not be able to change system relevant information (by accident) like ssh-keys, other users' passwords etc. However, from this yum install in user home for non-admins I understood that sudo privileges are necessary to do yum installs.



How could we achieve this?






rhel privileges







share|improve this question




























    0















    We have set up a Red Hat VM on Azure, but we are unsure how we could deal with user privileges. We want to use the VM to test software in a Linux environment as opposed to the Windows workstations that we have.



    We would like to have two user groups:



    1) admin Account



    2) user Accounts: They need to be able to install packages via yum, but should not be able to change system relevant information (by accident) like ssh-keys, other users' passwords etc. However, from this yum install in user home for non-admins I understood that sudo privileges are necessary to do yum installs.



    How could we achieve this?






    rhel privileges







    share|improve this question


























      0












      0








      0








      We have set up a Red Hat VM on Azure, but we are unsure how we could deal with user privileges. We want to use the VM to test software in a Linux environment as opposed to the Windows workstations that we have.



      We would like to have two user groups:



      1) admin Account



      2) user Accounts: They need to be able to install packages via yum, but should not be able to change system relevant information (by accident) like ssh-keys, other users' passwords etc. However, from this yum install in user home for non-admins I understood that sudo privileges are necessary to do yum installs.



      How could we achieve this?






      rhel privileges







      share|improve this question
















      We have set up a Red Hat VM on Azure, but we are unsure how we could deal with user privileges. We want to use the VM to test software in a Linux environment as opposed to the Windows workstations that we have.



      We would like to have two user groups:



      1) admin Account



      2) user Accounts: They need to be able to install packages via yum, but should not be able to change system relevant information (by accident) like ssh-keys, other users' passwords etc. However, from this yum install in user home for non-admins I understood that sudo privileges are necessary to do yum installs.



      How could we achieve this?






      rhel privileges




      rhel privileges






      share|improve this question















      share|improve this question













      share|improve this question




      share|improve this question








      edited 15 hours ago









      ctrl-alt-delor

      12k42461




      12k42461










      asked 15 hours ago









      eviloliveevilolive

      1




      1




















          1 Answer
          1






          active

          oldest

          votes


















          0














          You can configure sudo in a very fine grain way:



          You can tell it to allow user-a to run program-b. You can tell it if a password is needed to do this. Adding a user to group sudo, gives that user permission to do anything with sudo if they provide a password. But if you edit the /etc/sudoers then you can provide this fine grained permission.



          Read:



          • man sudoers


          • man visudo — for how to edit the sudo file, on a live system, without accidentally locking yourself out.





          share|improve this answer























          • Thanks! I was not aware of the possibilities of sudo. So I created a new group newgroup and assigned my team members to it. If I put %newgroup ALL=(root) /usr/bin/yum in /etc/sudoers, members will only be able to execute yum, right? But yum changes files in some other folders outside $HOME, for which the group should not have write privileges. Is this not conflicting?

            – evilolive
            10 hours ago










          Your Answer








          StackExchange.ready(function()
          var channelOptions =
          tags: "".split(" "),
          id: "106"
          ;
          initTagRenderer("".split(" "), "".split(" "), channelOptions);

          StackExchange.using("externalEditor", function()
          // Have to fire editor after snippets, if snippets enabled
          if (StackExchange.settings.snippets.snippetsEnabled)
          StackExchange.using("snippets", function()
          createEditor();
          );

          else
          createEditor();

          );

          function createEditor()
          StackExchange.prepareEditor(
          heartbeatType: 'answer',
          autoActivateHeartbeat: false,
          convertImagesToLinks: false,
          noModals: true,
          showLowRepImageUploadWarning: true,
          reputationToPostImages: null,
          bindNavPrevention: true,
          postfix: "",
          imageUploader:
          brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
          contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
          allowUrls: true
          ,
          onDemand: true,
          discardSelector: ".discard-answer"
          ,immediatelyShowMarkdownHelp:true
          );



          );













          draft saved

          draft discarded


















          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f507159%2fmanage-root-privileges-for-users-on-red-hat-azure-vm%23new-answer', 'question_page');

          );

          Post as a guest















          Required, but never shown

























          1 Answer
          1






          active

          oldest

          votes








          1 Answer
          1






          active

          oldest

          votes









          active

          oldest

          votes






          active

          oldest

          votes









          0














          You can configure sudo in a very fine grain way:



          You can tell it to allow user-a to run program-b. You can tell it if a password is needed to do this. Adding a user to group sudo, gives that user permission to do anything with sudo if they provide a password. But if you edit the /etc/sudoers then you can provide this fine grained permission.



          Read:



          • man sudoers


          • man visudo — for how to edit the sudo file, on a live system, without accidentally locking yourself out.





          share|improve this answer























          • Thanks! I was not aware of the possibilities of sudo. So I created a new group newgroup and assigned my team members to it. If I put %newgroup ALL=(root) /usr/bin/yum in /etc/sudoers, members will only be able to execute yum, right? But yum changes files in some other folders outside $HOME, for which the group should not have write privileges. Is this not conflicting?

            – evilolive
            10 hours ago















          0














          You can configure sudo in a very fine grain way:



          You can tell it to allow user-a to run program-b. You can tell it if a password is needed to do this. Adding a user to group sudo, gives that user permission to do anything with sudo if they provide a password. But if you edit the /etc/sudoers then you can provide this fine grained permission.



          Read:



          • man sudoers


          • man visudo — for how to edit the sudo file, on a live system, without accidentally locking yourself out.





          share|improve this answer























          • Thanks! I was not aware of the possibilities of sudo. So I created a new group newgroup and assigned my team members to it. If I put %newgroup ALL=(root) /usr/bin/yum in /etc/sudoers, members will only be able to execute yum, right? But yum changes files in some other folders outside $HOME, for which the group should not have write privileges. Is this not conflicting?

            – evilolive
            10 hours ago













          0












          0








          0







          You can configure sudo in a very fine grain way:



          You can tell it to allow user-a to run program-b. You can tell it if a password is needed to do this. Adding a user to group sudo, gives that user permission to do anything with sudo if they provide a password. But if you edit the /etc/sudoers then you can provide this fine grained permission.



          Read:



          • man sudoers


          • man visudo — for how to edit the sudo file, on a live system, without accidentally locking yourself out.





          share|improve this answer













          You can configure sudo in a very fine grain way:



          You can tell it to allow user-a to run program-b. You can tell it if a password is needed to do this. Adding a user to group sudo, gives that user permission to do anything with sudo if they provide a password. But if you edit the /etc/sudoers then you can provide this fine grained permission.



          Read:



          • man sudoers


          • man visudo — for how to edit the sudo file, on a live system, without accidentally locking yourself out.






          share|improve this answer












          share|improve this answer



          share|improve this answer










          answered 15 hours ago









          ctrl-alt-delorctrl-alt-delor

          12k42461




          12k42461












          • Thanks! I was not aware of the possibilities of sudo. So I created a new group newgroup and assigned my team members to it. If I put %newgroup ALL=(root) /usr/bin/yum in /etc/sudoers, members will only be able to execute yum, right? But yum changes files in some other folders outside $HOME, for which the group should not have write privileges. Is this not conflicting?

            – evilolive
            10 hours ago

















          • Thanks! I was not aware of the possibilities of sudo. So I created a new group newgroup and assigned my team members to it. If I put %newgroup ALL=(root) /usr/bin/yum in /etc/sudoers, members will only be able to execute yum, right? But yum changes files in some other folders outside $HOME, for which the group should not have write privileges. Is this not conflicting?

            – evilolive
            10 hours ago
















          Thanks! I was not aware of the possibilities of sudo. So I created a new group newgroup and assigned my team members to it. If I put %newgroup ALL=(root) /usr/bin/yum in /etc/sudoers, members will only be able to execute yum, right? But yum changes files in some other folders outside $HOME, for which the group should not have write privileges. Is this not conflicting?

          – evilolive
          10 hours ago





          Thanks! I was not aware of the possibilities of sudo. So I created a new group newgroup and assigned my team members to it. If I put %newgroup ALL=(root) /usr/bin/yum in /etc/sudoers, members will only be able to execute yum, right? But yum changes files in some other folders outside $HOME, for which the group should not have write privileges. Is this not conflicting?

          – evilolive
          10 hours ago

















          draft saved

          draft discarded
















































          Thanks for contributing an answer to Unix & Linux Stack Exchange!


          • Please be sure to answer the question. Provide details and share your research!

          But avoid


          • Asking for help, clarification, or responding to other answers.

          • Making statements based on opinion; back them up with references or personal experience.

          To learn more, see our tips on writing great answers.




          draft saved


          draft discarded














          StackExchange.ready(
          function ()
          StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f507159%2fmanage-root-privileges-for-users-on-red-hat-azure-vm%23new-answer', 'question_page');

          );

          Post as a guest















          Required, but never shown





















































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown

































          Required, but never shown














          Required, but never shown












          Required, but never shown







          Required, but never shown







          -

          Popular posts from this blog

          getting Checkpoint VPN SSL Network Extender working in the command lineHow to connect to CheckPoint VPN on Ubuntu 18.04LTS?Will the Linux ( red-hat ) Open VPNC Client connect to checkpoint or nortel VPN gateways?VPN client for linux machine + support checkpoint gatewayVPN SSL Network Extender in FirefoxLinux Checkpoint SNX tool configuration issuesCheck Point - Connect under Linux - snx + OTPSNX VPN Ububuntu 18.XXUsing Checkpoint VPN SSL Network Extender CLI with certificateVPN with network manager (nm-applet) is not workingWill the Linux ( red-hat ) Open VPNC Client connect to checkpoint or nortel VPN gateways?VPN client for linux machine + support checkpoint gatewayImport VPN config files to NetworkManager from command lineTrouble connecting to VPN using network-manager, while command line worksStart a VPN connection with PPTP protocol on command linestarting a docker service daemon breaks the vpn networkCan't connect to vpn with Network-managerVPN SSL Network Extender in FirefoxUsing Checkpoint VPN SSL Network Extender CLI with certificate

          Image
          If human space travel is limited by the G force vulnerability, is there a way to counter G forces? Did Shadowfax go to Valinor? Do I have a twin with permutated remainders? Blender 2.8 I can't see vertices, edges or faces in edit mode 1960's book about a plague that kills all white people How can I make my BBEG immortal short of making them a Lich or Vampire? Alternative to sending password over mail? Is it inappropriate for a student to attend their mentor's dissertation defense? Why is Collection not simply treated as Collection<?> Took a trip to a parallel universe, need help deciphering Assassin's bullet with mercury Why is it a bad idea to hire a hitman to eliminate most corrupt politicians? I Accidentally Deleted a Stock Terminal Theme Is there a hemisphere-neutral way of specifying a season? What about the virus in 12 Monkeys? Why can't we play rap on piano? Arrow those variables! Today is the Center Modeling an IP Ad...
          Read more

          Cannot Extend partition with GParted The 2019 Stack Overflow Developer Survey Results Are In Announcing the arrival of Valued Associate #679: Cesar Manara Planned maintenance scheduled April 17/18, 2019 at 00:00UTC (8:00pm US/Eastern) 2019 Community Moderator Election ResultsCan't increase partition size with GParted?GParted doesn't recognize the unallocated space after my current partitionWhat is the best way to add unallocated space located before to Ubuntu 12.04 partition with GParted live?I can't figure out how to extend my Arch home partition into free spaceGparted Linux Mint 18.1 issueTrying to extend but swap partition is showing as Unknown in Gparted, shows proper from fdiskRearrange partitions in gparted to extend a partitionUnable to extend partition even though unallocated space is next to it using GPartedAllocate free space to root partitiongparted: how to merge unallocated space with a partition

          Image
          Make it rain characters Keeping a retro style to sci-fi spaceships? How to split my screen on my Macbook Air? How can I define good in a religion that claims no moral authority? does high air pressure throw off wheel balance? Scientific Reports - Significant Figures Relations between two reciprocal partial derivatives? How to delete random line from file using Unix command? How did passengers keep warm on sail ships? How are presidential pardons supposed to be used? Are my PIs rude or am I just being too sensitive? He got a vote 80% that of Emmanuel Macron’s Change bounding box of math glyphs in LuaTeX Match Roman Numerals Was credit for the black hole image misattributed? How to pronounce 1ターン? how can a perfect fourth interval be considered either consonant or dissonant? Working through the single responsibility principle (SRP) in Python when calls are expensive High Q peak in frequency response means what in time domain? ...
          Read more

          Marilyn Monroe Ny fiainany manokana | Jereo koa | Meny fitetezanafanitarana azy.

          Image
          OlonaBiôgrafiaVangovangoMpilalaoMpilalao amin'ny horonantsaryMpamoaka horonantsaryTeraka tamin'ny taona 1926Maty tamin'ny taona 1962 EtazoniaLos Angeles fanitarana azy . Marilyn Monroe Avy amin'i Wikipedia Sauter à la navigation Sauter à la recherche Marilyn Monroe Ankapobeny Anarana Marilyn Monroe Teraka 1 Jiona 1926 Maty 5 Aogositra 1962 Fiaviana sy ny andraikitra Firenena Etazonia Asa : mpilalao mpilalao amin'ny horonantsary mpamoaka horonantsary Fiainana manokana Marilyn Monroe dia mpilalao, mpilalao amin'ny horonantsary, mpamoaka horonantsary mizaka ny zom-pirenen'i Etazonia teraka ny 1 Jiona 1926 tao Los Angeles ary maty ny 5 Aogositra 1962 Ny fiainany manokana | Ny vadiny dia James Dougherty, Joe DiMaggio, Arthur Miller. Jereo koa | Biôgrafia Rohy ivelany | Ao amin'i Freebase: [1] Mbola ambangovangony ity lahatsoratra ity ary tokony hofenoina . Azonao atao ny mandray anjara eto amin'ny Wikipedia amin...
          Read more