Ubuntu20.04 sudoグループにユーザーを追加し、パスワードを入力しないように設定
2327 ワード
askubuntuのを直接コピーして、半日探しましたhttps://askubuntu.com/questions/192050/how-to-run-sudo-command-with-no-password
ところで、re-loginを再登録してください.
I found that the most straight forward thing to do, in order to easily replicate this behavior across multiple servers, was the following:
Change this line:
to this line:
And move it under this line:
you should now have this:
then for every user that needs sudo access WITH a password:
and for every user that needs sudo access WITH NO password:
and finally, run this:
And that’s it!
Edit: You may have to add the admin group as I don’t think it exists by default.
You can also add the default AWS ubuntu user to the admin group via this command:
Note: As @hata mentioned, you may need to use adm as your admin group name, depending on which version of Ubuntu is being used.
ところで、re-loginを再登録してください.
I found that the most straight forward thing to do, in order to easily replicate this behavior across multiple servers, was the following:
sudo visudo
Change this line:
# Members of the admin group may gain root privileges
%admin ALL=(ALL) ALL
to this line:
# Members of the admin group may gain root privileges
%admin ALL=(ALL) NOPASSWD:ALL
And move it under this line:
# Allow members of group sudo to execute any command
%sudo ALL=(ALL:ALL) ALL
you should now have this:
# This file MUST be edited with the 'visudo' command as root.
#
# Please consider adding local content in /etc/sudoers.d/ instead of
# directly modifying this file.
#
# See the man page for details on how to write a sudoers file.
#
Defaults env_reset
Defaults mail_badpass
Defaults secure_path="/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin"
# Host alias specification
# User alias specification
# Cmnd alias specification
# User privilege specification
root ALL=(ALL:ALL) ALL
# Allow members of group sudo to execute any command
%sudo ALL=(ALL:ALL) ALL
# Members of the admin group may gain root privileges
%admin ALL=(ALL) NOPASSWD:ALL
# See sudoers(5) for more information on "#include" directives:
#includedir /etc/sudoers.d
then for every user that needs sudo access WITH a password:
sudo adduser sudo
and for every user that needs sudo access WITH NO password:
sudo adduser admin
and finally, run this:
sudo service sudo restart
And that’s it!
Edit: You may have to add the admin group as I don’t think it exists by default.
sudo groupadd admin
You can also add the default AWS ubuntu user to the admin group via this command:
sudo usermod ubuntu -g admin
Note: As @hata mentioned, you may need to use adm as your admin group name, depending on which version of Ubuntu is being used.