[sudo-users] /etc/sudoers

Irby, Dudley-UCON Dudley.Irby-UCON at ps.net
Fri Oct 13 15:44:04 EDT 2006


What I am trying to set up in /etc/sudoers, is where an helpdesk person
can reset passwds for application people. The list is long, but I do not
want this person to be able to reset the passwds' for root and the

Is there a way to restrict a group ? 


ccloyd  ALL=(ALL)       NOPASSWD: /usr/bin/passwd [A-z]*,
!/usr/bin/passwd root

This prohibits changing root passwd, but I did not want to make a line
for all the admins.

Any ideas would be appreciated.

Thank you,

Dudley Irby

More information about the sudo-users mailing list