Linux user Privileges

Linux user Privileges

In windows domain, you can have enterprise Admins, Domain Admins, Account operators, print operators,etc...

I wonder what is the equivalent in Linux (ubuntu)

Thank you
jskfanAsked:
Who is Participating?

Improve company productivity with a Business Account.Sign Up

x
 
MazdajaiConnect With a Mentor Commented:
...Without sudo, you have root (admin) and non-root (users) accounts and groups to differentiate permissions as Sandy mentioned.  It's same same as how groups works in Windows.

Incorrect and disagree are two different terms. I will never say the groups works the same in  Windows vs Linux.

You can assign user rights to restart the server in Linux (not shutdown) but you can't in Windows. Why?

Group is merely a container in Linux, you can use username and never touch /etc/group in sudoer. (Bad practice but doable) On the other hand, Domain Admin and Schema Admin are predefined groups that cannot be substituted. Why?

Because they are fundamental two different type of operating systems. Linux design secure in mind whereas Windows design to be ease of use.
0
 
stu215Connect With a Mentor Systems AnalystCommented:
Ubuntu User Management:
https://help.ubuntu.com/10.04/serverguide/user-management.html

Ubuntu File Permissions:
https://help.ubuntu.com/community/FilePermissions

Ubuntu General System Mgt:
https://help.ubuntu.com/community/SystemAdministration

Generally you would setup groups and then apply the group to a set of files, and then add users to those groups which would restrict access to files by a group.

NOTE: see the file permissions link above as you have to explicitly set what permissions you would like the group to have on a particular set of files / folders / etc.
0
 
jskfanAuthor Commented:
For instance Sudoers..
Are all users added to Sudoers file have the same privileges as Root user
0
A proven path to a career in data science

At Springboard, we know how to get you a job in data science. With Springboard’s Data Science Career Track, you’ll master data science  with a curriculum built by industry experts. You’ll work on real projects, and get 1-on-1 mentorship from a data scientist.

 
stu215Connect With a Mentor Systems AnalystCommented:
Adding a user to the sudoers file is giving the user a way to execute things as though they were the root user ( or a specified user ) but without allowing them to login as root.

Depeding on how its configured they should be prompted to enter a "sudo" password in order to execute the command they would like executed.

- You can setup different levels of users which can execute certain commands.

This explains it a bit better:
https://help.ubuntu.com/community/Sudoers
0
 
MazdajaiConnect With a Mentor Commented:
There is no equivalent roles in  Ubuntu / Linux.

The only "admin" in Linux is root. The fore mention sudoers is similar as "Run As Administrator" in Windows but it is nowhere near root privileges.

man sudo

Open in new window

0
 
SandyConnect With a Mentor Commented:
No it is not... Linux uses FLAT user db... not schema based. Linux has group called root, sys, operator ...

can be checked under /etc/group

TY/SA
0
 
serialbandConnect With a Mentor Commented:
Mazdajai is incorrect.

As stu215 mentioned, if you have your sudo account set to run as full root, you are fully root.  Accounts can be set with limited privileges if you want.

Without sudo, you have root (admin) and non-root (users) accounts and groups to differentiate permissions as Sandy mentioned.  It's same same as how groups works in Windows.
0
 
jskfanAuthor Commented:
in windows you have Administrator at  the domain level (Domain Admin)
you have Administrator on the local server only.
you have power users and you have just regular users that cannot download or execute certain commands.


in Linux you have Root at the domain level , assuming we are using LDAP) and there is Root user on each server, I am not sure about the equivalent of powers users, account operators, print operators, backup operators, etc... in Linux.

it sounds like in Linux you can be either Root or regular user nothing in between...
0
 
jskfanAuthor Commented:
Thank you
0
Question has a verified solution.

Are you are experiencing a similar issue? Get a personalized answer when you ask a related question.

Have a better answer? Share it in a comment.

All Courses

From novice to tech pro — start learning today.