Chapter 20. Managing users from the command line
You can manage users and groups using the command-line interface (CLI). This enables you to add, remove, and modify users and user groups in Red Hat Enterprise Linux environment.
20.1. Adding a new user from the command line
This section describes how to use the useradd utility to add a new user.
Prerequisites
-
Rootaccess
Procedure
To add a new user, use:
# useradd options username
Replace options with the command-line options for the
useraddcommand, and replace username with the name of the user.Example 20.1. Adding a new user
To add the user
sarahwith user ID5000, use:# useradd -u 5000 sarah
Verification steps
To verify the new user is added, use the
idutility.# id sarah
The output returns:
uid=5000(sarah) gid=5000(sarah) groups=5000(sarah)
Additional resources
-
useraddman page
20.2. Adding a new group from the command line
This section describes how to use the groupadd utility to add a new group.
Prerequisites
-
Rootaccess
Procedure
To add a new group, use:
# groupadd options group-name
Replace options with the command-line options for the
groupaddcommand, and replace group-name with the name of the group.Example 20.2. Adding a new group
To add the group
sysadminswith group ID5000, use:# groupadd -g 5000 sysadmins
Verification steps
To verify the new group is added, use the
tailutility.# tail /etc/group
The output returns:
sysadmins:x:5000:
Additional resources
-
groupaddman page
20.3. Adding a user to a supplementary group from the command line
You can add a user to a supplementary group to manage permissions or enable access to certain files or devices.
Prerequisites
-
rootaccess
Procedure
To add a group to the supplementary groups of the user, use:
# usermod --append -G group-name usernameReplace group-name with the name of the group, and replace username with the name of the user.
Example 20.3. Adding a user to a supplementary group
To add the user
sysadminto the groupsystem-administrators, use:# usermod --append -G system-administrators sysadmin
Verification steps
To verify the new groups is added to the supplementary groups of the user
sysadmin, use:# groups sysadmin
The output displays:
sysadmin : sysadmin system-administrators
20.4. Creating a group directory
Under the UPG system configuration, you can apply the set-group identification permission (setgid bit) to a directory. The setgid bit makes managing group projects that share a directory simpler. When you apply the setgid bit to a directory, files created within that directory are automatically assigned to a group that owns the directory. Any user that has the permission to write and execute within this group can now create, modify, and delete files in the directory.
The following section describes how to create group directories.
Prerequisites
-
Rootaccess
Procedure
Create a directory:
# mkdir directory-nameReplace directory-name with the name of the directory.
Create a group:
# groupadd group-nameReplace group-name with the name of the group.
Add users to the group:
# usermod --append -G group-name usernameReplace group-name with the name of the group, and replace username with the name of the user.
Associate the user and group ownership of the directory with the group-name group:
# chgrp group-name directory-nameReplace group-name with the name of the group, and replace directory-name with the name of the directory.
Set the write permissions to allow the users to create and modify files and directories and set the
setgidbit to make this permission be applied within the directory-name directory:# chmod g+rwxs directory-nameReplace directory-name with the name of the directory.
Now all members of the
group-namegroup can create and edit files in thedirectory-namedirectory. Newly created files retain the group ownership ofgroup-namegroup.
Verification steps
To verify the correctness of set permissions, use:
# ls -ld directory-nameReplace directory-name with the name of the directory.
The output returns:
drwxrwsr-x. 2 root group-name 6 Nov 25 08:45 directory-name