Advanced User Man

Question 1

Set password aging parameters for user100 to mindays 7, maxdays 28, and warndays 5:

Answer 1

chage -m 7 -M 26 -W 5 user100

Question 2

show pasword aging settings

Answer 2

chage -l user100

Question 3

Set the account expiry to Jan 31 2020

Answer 3

chage -E 2020-01-31 user100

Question 4

Set password aging attributes for user200 to mindays 10, maxdays 90, and warndays 14:
**with passwd

Answer 4

passwd -n 10 -x 90 -w 14 user200

Question 5

see passwd status

Answer 5

passwd -S user200

Question 6

set the number of inactivity days to 5

Answer 6

passwd -i5 user200

Question 7

for user to change password at next login

Answer 7

passwd -e user200

Question 8

lock a user

Answer 8

usermod -L user200
passwd -l user200

Question 9

unlock user

Answer 9

usermod -U user200
passwd -u user200

Question 10

Create the group linuxadm with GID 5000:

Answer 10

groupadd -g 5000 linuxadm

Question 11

Create a group called dba with the same GID as that of group linuxadm:

Answer 11

groupadd -o -g 5000 dba
-o is needed as it is ‘non-standard’ and has the same GID as another group. Inherits same perms as other group

Question 12

where are groups stored

Answer 12

/etc/groups

Question 13

Add user1 as a secondary member of group dba using the usermod command. The existing membership for the user must remain intact.

Answer 13

usermod -aG dba user1

Question 14

confirm user1 is in dba group

Answer 14

grep dba /etc/group
id user1
groups user1

Question 15

alter name of linuxadm group to sysadm

Answer 15

groupmod -n sysadm linuxadm

Question 16

change GID of a group

Answer 16

groupmod -g 6000 sysadm

Question 17

delete group

Answer 17

groupdel sysadm

Question 18

show who you are currently logged in as

Answer 18

whoami

Question 19

show the identity of who originally logged in

Answer 19

logname

Question 20

edit sudoers file

Answer 20

visudo

Question 21

give user full access to admin functions with visudo

Answer 21

edit top of file
user1 ALL=(ALL) ALL

Question 22

edit sudoer file so user1 does not have to use their password

Answer 22

visudo
user1 ALL=(ALL) NOPASSWD:ALL

Question 23

give user sudo access to cat command

Answer 23

user1 ALL=/usr/bin/cat

Question 24

Next, assign PKGCMD to PKGADM. This way one rule is set that allows a group of users access to a group of commands. You can add or remove commands and users anytime as needed, and the change will take effect right
away.

Answer 24

Cmnd_Alias PKGCMD = /usr/bin/yum, /usr/bin/rpm
User_Alias PKGADM = user1, user100, user200
PKGADM ALL = PKGCMD

Question 25

change ownership of a file

Answer 25

chown user100 file.txt

Question 26

change group ownership of a file

Answer 26

chgrp dbagroup file.txt

Question 27

Change the ownership to user200 and owning group to user100

Answer 27

chown user200:user100 file.txt

Question 28

Modify the ownership to user200 and owning group to dba recursively on dir10

Answer 28

chown -R user200:dba dir10