Users and Groups

Question 1

What command shows basic information about a logged in user?

Answer 1

■ id

Question 2

What ‘ps’ option shows processes with a terminal?

Answer 2

■ ‘a’

Question 3

What ‘ps’ option shows the user associated with a process?

Answer 3

■ ‘u’

Question 4

How does the operating system track users internally?

Answer 4

■ By UID number

Question 5

What are the fields of an /etc/passwd entry?

Answer 5

■ username:password:UID:GID:GECOS:/home/dir:shell
■ username - mapping of UID to username
■ password - historical field for password now stored in /etc/shadow
■ UID - identifies the user at the most fundamental level
■ GID - user’s primary group ID number
■ GECOS - arbitrary text, usually user’s real name
■ /home/dir - location of user’s personal data and conf files
■ shell - program that provides the user’s command line prompt

Question 6

Which group normally owns the files created by a user?

Answer 6

■ Primary Group

Question 7

What command allows the user to log in to a new group changing the current real group ID to the named group?

Answer 7

■ newgrp

Question 8

What command sets administers group membership and passwords?

Answer 8

■ gpasswd

Question 9

Whats the difference between ‘su’ and ‘su -‘?

Answer 9

■ ‘su [username]’ starts a non-login shell as that user with the current environment
■ ‘su - [username]’ starts a login shell as that user with a new environment

Question 10

Where are commands executed by ‘sudo’ logged?

Answer 10

■ /var/log/secure

Question 11

Where are parameters for new accounts and groups kept?

Answer 11

■ /etc/login.defs

Question 12

What command is used to configure user password time limits?

Answer 12

■ chage

Question 13

What command is used to configure/administer user accounts?

Answer 13

■ usermod

Question 14

What user account setting allows a user to login to a system but prevents interactive use?

Answer 14

■ nologin

Question 15

What character in an /etc/shadow entry signifies a locked account?

Answer 15

■ !

Question 16

When using the date and chage command to set password date limits, how must the date command be used?

Answer 16

■ chage -E date +%F -d +180days
■ The date command must be used with two date arguments to work. Once as the format wanted for the target command and then again for the forward date.

Question 17

What daemon is responsible for retrieving and caching user information and authentication info?

Answer 17

■ sssd - system security services daemon

Question 18

What tool is used to automate the configuration of SSO on Linux systems?

Answer 18

■ authconfig

Question 19

What are the various tools included in the authconfig suite?

Answer 19

■ authconfig
■ authconfig-tui
■ authconfig-gtk (can be launched from system-config-authentication)

Question 20

What tool is used to retrieve information about a network user?

Answer 20

■ getent

Question 21

What specialized tool is used to enroll a client to an IPA server?

Answer 21

■ ipa-client-install

Question 22

What tool is used to configure the host for connecting to a central LDAP server?

Answer 22

■ system-config-authentication