Managing Local Group Accounts

RH199 - ch03s07 https://rol.redhat.com/rol/app/courses/rh199-8.
0/pages/ch03s07
Search
RHCSA Rapid Track
Start your lab now?

Lab environments take time to boot. Why not boot them now so you can read through course content or watch
some videos while they are starting?
YES, START IT NOT RIGHT NOW
Don't ask again
Version 8.0 TRANSLATIONS
Table of Contents Course Online Lab   
1 of 4 26/02/20, 2:22 pm
RH199 - ch03s07 https://rol.redhat.com/rol/app/courses/rh199-8.0/pages/ch03s07
P 1
(/rol/app/courses/rh199-8.0/pages/pr01) (/rol/app/courses/rh199-8.0/pages/pr01s02) (/rol/app/courses/rh199-8.0/pages/ch01)
(/rol/app (/rol/app
(/rol/app/courses/rh199-8.0/pages/ch01s02) (/rol/app/courses/rh199-8.0/pages/ch01s03) (/rol/app/courses/rh199-8.0/pages/ch01s04)
/courses /courses
/rh199-8.0 /rh199-8.0
2
(/rol/app/courses/rh199-8.0/pages/ch01s08) (/rol/app/courses/rh199-8.0/pages/ch01s09) (/rol/app/courses/rh199-8.0/pages/ch02)
/pages /pages
(/rol/app
/pr01) /ch01)
/courses 3
/rh199-8.0 (/rol/app
(/rol/app/courses/rh199-8.0/pages/ch03) (/rol/app/courses/rh199-8.0/pages/ch03s02) (/rol/app/courses/rh199-8.0/pages/ch03s03)
/pages /courses
/ch02) /rh199-8.0
/pages
4
/ch03)
(/rol/app
/courses
5
/rh199-8.0
(/rol/app
/pages
/courses
/ch04)
/rh199-8.0
6 /pages
(/rol/app/courses/rh199-8.0/pages/ch05s10) (/rol/app/courses/rh199-8.0/pages/ch06) (/rol/app/courses/rh199-8.0/pages/ch06s02)
(/rol/app /ch05)
/courses
/rh199-8.0 7
/pages (/rol/app
/ch06) /courses
/rh199-8.0 8
/pages (/rol/app
/ch07) /courses
9 /rh199-8.0
(/rol/app /pages
/courses /ch08)
/rh199-8.0
/pages
10
/ch09)
(/rol/app
/courses
/rh199-8.0 11
/pages (/rol/app
/ch10) /courses
/rh199-8.0
/pages
12
/ch11)
(/rol/app
/courses
/rh199-8.0
13 /pages
(/rol/app /ch12)
/courses
14
/rh199-8.0
(/rol/app
/pages
/courses
15
/ch13)
/rh199-8.0
(/rol/app 16
/pages
/courses (/rol/app
/ch14)
/rh199-8.0 /courses
/pages /rh199-8.0
 PREVIOUS (/ROL/APP/COURSES/RH199-8.0/PAGES/CH03S06)  NEXT (/ROL/APP/COURSES/RH199-8.0/PAGES/CH03S08)
/ch15) /pages
Managing Local Group Accounts /ch16)


Objectives
After completing this section, students should be able to create, modify, and delete local group accounts.
2 of 4 26/02/20, 2:22 pm
Managing Local Groups
A group must exist before a user can be added to that group. Several command-line tools are used to manage local group
accounts.
Creating Groups from the Command Line
The groupadd command creates groups. Without options the groupadd command uses the next available GID from
the range specified in the /etc/login.defs file while creating the groups.
The -g option specifies a particular GID for the group to use.
[user01@host ~]$sudo groupadd -g10000group01

[user01@host ~]$tail /etc/group
...output omitted...
group01:x:10000:
NOTE
Given the automatic creation of user private groups (GID 1000+), it is generally recommended to set
aside a range of GIDs to be used for supplementary groups. A higher range will avoid a collision with a
system group (GID 0-999).
The -r option creates a system group using a GID from the range of valid system GIDs listed in the /etc
/login.defs file. The SYS_GID_MIN and SYS_GID_MAX configuration items in /etc/login.defs define the range of
system GIDs.
[user01@host ~]$sudo groupadd -rgroup02

group01:x:10000:
group02:x:988:
Modifying Existing Groups from the Command Line
The groupmod command changes the properties of an existing group. The -n option specifies a new name for the
group.
[user01@host ~]$sudo groupmod -ngroup0022group02

group0022:x:988:
Notice that the group name is updated to group0022 from group02 .
The -g option specifies a new GID.
[user01@host ~]$sudo groupmod -g20000group0022

group0022:x:20000:
Notice that the GID is updated to 20000 from 988 .
Deleting Groups from the Command Line
The groupdel command removes groups.
[user01@host ~]$sudo groupdelgroup0022
3 of 4 26/02/20, 2:22 pm
NOTE
You cannot remove a group if it is the primary group of any existing user. As with userdel , check all file
systems to ensure that no files remain on the system that are owned by the group.
Changing Group Membership from the Command Line
The membership of a group is controlled with user management. Use the usermod -g command to change a user's
primary group.
[user01@host ~]$iduser02
uid=1006(user02) gid=1008(user02) groups=1008(user02)

[user01@host ~]$sudo usermod -ggroup01user02
uid=1006(user02) gid=10000(group01) groups=10000(group01)
Use the usermod -aG command to add a user to a supplementary group.
uid=1007(user03) gid=1009(user03) groups=1009(user03)

[user01@host ~]$sudo usermod -aGgroup01user03
uid=1007(user03) gid=1009(user03) groups=1009(user03),10000(group01)
IMPORTANT
The use of the -a option makes usermod function in append mode. Without -a , the user will be
removed from any of their current supplementary groups that are not included in the -G option's list.
REFERENCES
group (5), groupadd (8), groupdel (8), and usermod (8) man pages
 PREVIOUS (/ROL/APP/COURSES/RH199-8.0/PAGES/CH03S06)  NEXT (/ROL/APP/COURSES/RH199-8.0/PAGES/CH03S08)
4 of 4 26/02/20, 2:22 pm

Managing Local Group Accounts

Загружено:

Сведения о документе

Авторское право

Доступные форматы

Поделиться этим документом

Поделиться или встроить документ

Параметры публикации

Этот документ был вам полезен?

Это неприемлемый материал?

Авторское право:

Доступные форматы

Managing Local Group Accounts

Загружено:

Авторское право:

Доступные форматы

RH199 - ch03s07 https://rol.redhat.com/rol/app/courses/rh199-8.

RHCSA Rapid Track

Start your lab now?

YES, START IT NOT RIGHT NOW

Don't ask again

Version 8.0 TRANSLATIONS

Table of Contents Course Online Lab   

Managing Local Group Accounts /ch16)

Creating Groups from the Command Line

The -g option specifies a particular GID for the group to use.

[user01@host ~]$sudo groupadd -g10000group01

[user01@host ~]$sudo groupadd -rgroup02

Modifying Existing Groups from the Command Line

[user01@host ~]$sudo groupmod -ngroup0022group02

Notice that the group name is updated to group0022 from group02 .

The -g option specifies a new GID.

[user01@host ~]$sudo groupmod -g20000group0022

Notice that the GID is updated to 20000 from 988 .

Deleting Groups from the Command Line

The groupdel command removes groups.

[user01@host ~]$sudo groupdelgroup0022

Changing Group Membership from the Command Line

uid=1006(user02) gid=1008(user02) groups=1008(user02)

uid=1006(user02) gid=10000(group01) groups=10000(group01)

Use the usermod -aG command to add a user to a supplementary group.

uid=1007(user03) gid=1009(user03) groups=1009(user03)

uid=1007(user03) gid=1009(user03) groups=1009(user03),10000(group01)

 PREVIOUS (/ROL/APP/COURSES/RH199-8.0/PAGES/CH03S06)  NEXT (/ROL/APP/COURSES/RH199-8.0/PAGES/CH03S08)

Вам также может понравиться