{"id":5147,"date":"2021-03-18T10:10:15","date_gmt":"2021-03-18T10:10:15","guid":{"rendered":"https:\/\/linuxways.net\/?p=5147"},"modified":"2021-03-18T10:10:15","modified_gmt":"2021-03-18T10:10:15","slug":"how-to-add-a-user-to-sudoers-on-ubuntu","status":"publish","type":"post","link":"https:\/\/linuxways.net\/de\/ubuntu\/how-to-add-a-user-to-sudoers-on-ubuntu\/","title":{"rendered":"How to Add a User to Sudoers on Ubuntu"},"content":{"rendered":"

The sudo command in Linux allows you to run all those commands which require root privileges. Without root privileges, a normal user is very limited in what they can do in Linux. But, practically you cannot give every user all privileges to do whatever they want to do with a system. However, there are some users whom you want to assign root privileges to perform all or a limited number of duties. The sudo command lets you do this by allowing a user to run all or a specific set of commands as a root user.<\/p>\n

To add a user to sudoers (list of users who can run sudo commands) on Ubuntu, there are three different methods including both the command line and the GUI. We will explain each method with example. If you are interested in how to add a new user in Linux, visit our post on How to How to Add and Remove Users on Ubuntu 20.04<\/a>.<\/p>\n

Note<\/strong>: For the demonstration, we will be using the Ubuntu 20.04 LTS. You can use the same procedures on other Linux distributions that use sudo.<\/p>\n

Check If a User Has Sudo Rights<\/h2>\n

To find out if a user has sudo rights, you will need to check if it is a part of the group \u201csudo\u201d. You can check it using the command below in the Terminal:<\/p>\n

$ groups <username><\/pre>\n
If the user has sudo rights, you will see the “sudo” group in the output.<\/p>\n
For instance, to check if a user named \u201cummara\u201d has sudo access, the command would be:<\/p>\n
$ groups ummara<\/pre>\n
The following output shows the user \u201cummara\u201d is a member of sudo groups and therefore has sudo privileges.<\/p>\n
<\/p>\n
Add a User to Sudoers on Ubuntu<\/h2>\n
There are different methods to add a user to sudoers on Ubuntu. Remember, you will need to run the commands described here as a root or sudo.<\/p>\n
Method #1 By Adding User to the sudo group (Command Line)<\/h3>\n
To add a user to sudoers and assign it sudo privileges, use the usermod<\/em> command as follows:<\/p>\n
$ sudo usermod -aG sudo username<\/pre>\n
This command will add user to a group<\/a> named \u201csudo\u201d. The members of sudo group are allowed to run the sudo commands.<\/p>\n
For instance, to add a user named “ummara” to sudoers, the command would be:<\/p>\n
$ sudo usermod -aG sudo ummara<\/pre>\n
Enter the sudo password, after which the user will be added to the sudo group. To confirm the user is now in the sudoers, issue the command below:<\/p>\n
$ groups <username><\/pre>\n
The groups command tells which groups a user belongs to<\/a>.<\/p>\n
In our scenario, the command would be:<\/p>\n
$ groups ummara<\/pre>\n
In the output, you should see the sudo group.<\/p>\n
<\/p>\n
Now the user will be allowed to run the sudo commands, like we have tried the \u201csudo apt update<\/em>\u201d command:<\/p>\n
<\/p>\n
Method 2: By Adding User to the Sudoers File (Command Line)<\/h3>\n
Another method to assign sudo access is by adding the user to the sudoers file. You can edit the sudoers file as follows:<\/p>\n
$ sudo visudo<\/pre>\n
Enter your password. Now scroll down the bottom of the file and add an entry in the following format:<\/p>\n
username ALL=(ALL) NOPASSWD:ALL<\/pre>\n
For instance, we want to add a user named “ummara” to sudoers. For this purpose, we have appended the below entry in the sudoers file:<\/p>\n
ummara ALL=(ALL) NOPASSWD:ALL<\/pre>\n
<\/p>\n
Once done, save and close the sudoers file. Now the user will be allowed to run all commands as sudo.<\/p>\n
After editing the sudoers file, you can check if its syntax is correct. Issue the below command to do so:<\/p>\n
$ sudo visudo -c<\/pre>\n
If the syntax is right, you will see this output:<\/p>\n
<\/p>\n
To confirm the user is now in the sudoers, issue the command below:<\/p>\n
$ groups <username><\/pre>\n
You should see the sudo group in the output.<\/p>\n
<\/p>\n
Limiting Root Access with Sudo<\/h1>\n
In certain scenarios, there is a requirement for users to perform a certain task that needs root privileges. However, it is not reasonable to assign them all privileges. With sudo, you can limit the root access to commands they can use. For instance, you want a user named \u201cummara\u201d to give access only to the \u201cuseradd\u201d and \u201cadduser\u201d command. In this case, edit the sudoers file using the command below:<\/p>\n
$ sudo visudo<\/pre>\n
Then scroll down the file and add the below entry:<\/p>\n
ummara ALL=(ALL) NOPASSWD: \/usr\/sbin\/useradd,\/usr\/sbin\/adduser<\/pre>\n
Save the sudoers file and exit.<\/p>\n
<\/p>\n
Now the user \u201cummara\u201d will be able to use only useradd and adduser commands.<\/p>\n
<\/p>\n
However, if \u201cummara\u201d attempts to run any other sudo command, it will be refused.<\/p>\n
<\/p>\n
Method #3: By Changing Account Type to Administrator (GUI)<\/h3>\n
There is another way through which you can add a user to sudoers from the graphical user interface. Here are the steps to do so:<\/p>\n
1. Open the Settings utility by right-clicking the desktop and choosing Settings<\/strong> from the menu.<\/p>\n
<\/p>\n
Then from the Settings window, select the Users<\/strong> tab. Then unlock the user settings by clicking the Unlock<\/strong> button.<\/p>\n
<\/p>\n
Now enter your password for authentication and click Authenticate<\/strong>.<\/p>\n
<\/p>\n
Now select the user to whom you want to give sudo access. Then under the user Account Settings<\/strong>, switch the toggle button in front of Administrator<\/strong> to on state as shown in the screenshot below.<\/p>\n
<\/p>\n
By doing so, the user will be added to the sudo group and it will be able to use all the sudo commands.<\/p>\n
Remove User from Sudoers<\/h2>\n
To remove a user from sudoers, use the following command:<\/p>\n
$ sudo gpasswd -d <username> sudo<\/pre>\n
This command will remove the specified user from the sudo group and hence it will no longer be able to run the commands as a root user.<\/p>\n
To confirm if the user has been removed from the sudoers, run the command below:<\/p>\n
$ groups <username><\/pre>\n
There should be no \u201csudo\u201d group in the output.<\/p>\n
Sudo is a very handy tool for system administrators that allow them to provide root access to a user with granularity. Here, we have covered how to add a user to sudoers using different methods, limit root access with sudo and remove a user from sudoers.<\/p>","protected":false},"excerpt":{"rendered":"
The sudo command in Linux allows you to run all those commands which require root privileges. Without root privileges, a normal user is very limited in what they…<\/p>","protected":false},"author":1,"featured_media":5258,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[2],"tags":[227,100,155],"class_list":["post-5147","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-ubuntu","tag-sudoers","tag-ubuntu-20-04","tag-user"],"_links":{"self":[{"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/posts\/5147","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/comments?post=5147"}],"version-history":[{"count":0,"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/posts\/5147\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/media\/5258"}],"wp:attachment":[{"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/media?parent=5147"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/categories?post=5147"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/linuxways.net\/de\/wp-json\/wp\/v2\/tags?post=5147"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}