{"id":70398,"date":"2022-10-14T10:15:00","date_gmt":"2022-10-14T14:15:00","guid":{"rendered":"https:\/\/jumpcloud.com\/?p=70398"},"modified":"2024-01-23T15:55:14","modified_gmt":"2024-01-23T20:55:14","slug":"how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04","status":"publish","type":"post","link":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04","title":{"rendered":"How to Create a New Sudo User &amp; Manage Sudo Access on Ubuntu 22.04"},"content":{"rendered":"\n<p><a class=\"wp-block-cgb-button button\" href=\"#step1\">Jump to Tutorial<\/a><\/p>\n\n\n\n<p>As a systems administrator, you may want to assign limited admin privileges to a delegated administrator so they can assist with administrative tasks. To help you accomplish this, the following tutorial will examine how to create a sudo user as well as manage sudo access on Ubuntu 22.04.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">What Is a Sudo User?<\/h2>\n\n\n\n<p>The root user, also known as the superuser, is the user with the highest privileges in a Linux system. The user has rights to execute virtually any command without restriction, including installing and uninstalling applications, modifying configuration files, adding and removing user accounts, upgrading the system, and creating and removing files, among other things.<\/p>\n\n\n\n<p>However, logging in and carrying out commands as root is highly discouraged. The fact that the root user can run any command on the system can also be risky. All it takes is one bad command to be executed and the whole system can be compromised. As such, it\u2019s always recommended to administer the Linux system as a sudo user.<\/p>\n\n\n\n<p>In Linux, sudo is a program that allows a regular user to run commands with root privileges or permissions. Sudo stands for either \u201csuper user do\u201d or \u201csubstitute user do.\u201d A sudo user is a regular user that can run some commands as a root user or with root privileges.&nbsp;<\/p>\n\n\n\n<p>Ideally, a sudo user is granted just enough privileges to allow them to perform the tasks at hand. This is known as the <a href=\"https:\/\/jumpcloud.com\/blog\/what-is-least-privilege\">least privilege principle<\/a>, which is particularly important if you are granting sudo privileges to multiple users. They should only be granted the minimum rights or permissions needed to perform their role.&nbsp;<\/p>\n\n\n\n<h2 class=\"wp-block-heading\">How to Create a Sudo User<\/h2>\n\n\n\n<p>Now that you know why a sudo user is essential on a Linux system, let\u2019s create and configure a sudo user on Ubuntu 22.04.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"step1\">Step 1: Log in to your server<\/h3>\n\n\n\n<p>To get started, log into your Ubuntu 22.04 server instance as the root user with the following SSH command:<\/p>\n\n\n\n<p><code>$ ssh root@server-ip<\/code><\/p>\n\n\n\n<p>If you are using the Putty SSH client, simply type in your server\u2019s IP address as indicated and click <strong>Open<\/strong>.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"614\" height=\"553\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-1.png\" alt=\"\" class=\"wp-image-70399\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-1.png 614w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-1-300x270.png 300w\" sizes=\"(max-width: 614px) 100vw, 614px\" \/><\/figure>\n\n\n\n<p>When prompted, provide the root password and hit ENTER. Once successfully logged in, you will land on the shell of your server instance.<\/p>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"step2\">Step 2: Create a new user<\/h3>\n\n\n\n<p>To create a sudo user, you will first create a new login user and later make the user a sudo user.<\/p>\n\n\n\n<p>To add or create a new user, run the <strong>adduser<\/strong> command as follows. In this example, we are creating a new regular user called <strong>jumpcloud<\/strong>.<\/p>\n\n\n\n<p><code># adduser jumpcloud<\/code><\/p>\n\n\n\n<p>The following happens when you run this command:<\/p>\n\n\n\n<ul>\n<li>A new user and group are created. The new group is referred to as the primary group and it corresponds to the name of the newly added user.<\/li>\n\n\n\n<li>The user is then added to the primary group.<\/li>\n\n\n\n<li>A home directory for the user is then created and configuration files are copied into it.<\/li>\n\n\n\n<li>You will then be prompted for the new user&#8217;s password. Be sure to provide a strong password and confirm it.<\/li>\n<\/ul>\n\n\n\n<p>After providing the password, you will be prompted to provide additional information such as Full Name, Room Number, Work Phone, and Home Phone. Fill in where applicable, or simply press ENTER to leave it blank. Finally, press Y to save all the information provided.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"835\" height=\"401\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-2.png\" alt=\"\" class=\"wp-image-70400\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-2.png 835w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-2-300x144.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-2-768x369.png 768w\" sizes=\"(max-width: 835px) 100vw, 835px\" \/><\/figure>\n\n\n\n<p>All users\u2019 details are stored in a special file called the <strong>\/etc\/passwd<\/strong> file. To confirm that the user was created, you can view this file using the <strong>cat<\/strong> command as follows:<\/p>\n\n\n\n<p><code># cat \/etc\/passwd | grep jumpcloud<\/code><\/p>\n\n\n\n<p>In addition, you can get more details about the user using the <strong>id <\/strong>command as follows:<\/p>\n\n\n\n<p><code># id jumpcloud<\/code><\/p>\n\n\n\n<p>The command displays the UID (User ID), GID (Group ID), and the groups that the user belongs to.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"879\" height=\"222\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-3.png\" alt=\"\" class=\"wp-image-70401\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-3.png 879w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-3-300x76.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-3-768x194.png 768w\" sizes=\"(max-width: 879px) 100vw, 879px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"step3\">Step 3: Add the new user to the sudo group<\/h3>\n\n\n\n<p>At this point, the user belongs only to the primary group. You can confirm this by running the following command:<\/p>\n\n\n\n<p><code># groups jumpcloud<\/code><\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"589\" height=\"103\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-4.png\" alt=\"\" class=\"wp-image-70402\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-4.png 589w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-4-300x52.png 300w\" sizes=\"(max-width: 589px) 100vw, 589px\" \/><\/figure>\n\n\n\n<p>To add the user to the sudo group, use the <strong>usermod<\/strong> command as follows:<\/p>\n\n\n\n<p><code># usermod -aG sudo jumpcloud<\/code><\/p>\n\n\n\n<p>Next, verify that the user now belongs to the sudo groups by running the<strong> id<\/strong> and <strong>groups<\/strong> command as shown.<\/p>\n\n\n\n<p><code># id jumpcloud<\/code><\/p>\n\n\n\n<p><code># groups jumpcloud<\/code><\/p>\n\n\n\n<p>This time around, you will notice the user now belongs to two groups: the primary group and <strong>sudo<\/strong>.&nbsp;<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"838\" height=\"264\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-5.png\" alt=\"\" class=\"wp-image-70403\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-5.png 838w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-5-300x95.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-5-768x242.png 768w\" sizes=\"(max-width: 838px) 100vw, 838px\" \/><\/figure>\n\n\n\n<h3 class=\"wp-block-heading\" id=\"step4\">Step 4: Test sudo<\/h3>\n\n\n\n<p>So far, we have created a regular user and added it to the sudo group, effectively granting it elevated privileges to run administrative tasks. Next, we are going to test its ability to execute privileged commands.<\/p>\n\n\n\n<p>First, switch to the sudo user as follows:<\/p>\n\n\n\n<p><code># su &#8211;&nbsp; jumpcloud<\/code><\/p>\n\n\n\n<p>The command switches to the sudo user&#8217;s home directory. When you switch to the sudo user for the first time, you will get a few tips on how to run commands as an administrator.<\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"806\" height=\"167\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-6.png\" alt=\"\" class=\"wp-image-70404\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-6.png 806w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-6-300x62.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-6-768x159.png 768w\" sizes=\"(max-width: 806px) 100vw, 806px\" \/><\/figure>\n\n\n\n<p>To run commands as a sudo user, use the following syntax:<\/p>\n\n\n\n<p><code>$ sudo command-to-be-executed<\/code><\/p>\n\n\n\n<p>For example, to install the Apache web server, run the command:<\/p>\n\n\n\n<p><code>$ sudo apt install apache2<\/code><\/p>\n\n\n\n<p>When prompted, type Y and hit ENTER to continue with the installation.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" width=\"1024\" height=\"409\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-7-1024x409.png\" alt=\"\" class=\"wp-image-70405\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-7-1024x409.png 1024w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-7-300x120.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-7-768x306.png 768w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-7.png 1070w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"step5\">Examining the Sudoers File&nbsp;<\/h2>\n\n\n\n<p>The sudoers file is a file that exists by default in UNIX\/Linux systems and is used to assign elevated privileges to users. The sudo user we have just created can run commands in the same way the root user can.&nbsp;<\/p>\n\n\n\n<p>However, if you\u2019re granting sudo privileges to multiple users and would like to limit the commands they can run as sudo, you\u2019ll want to keep track of their permissions by making use of the sudoers file.<\/p>\n\n\n\n<p>The sudoers file is located at <strong>\/etc\/sudoers<\/strong>. The file contains a set of rules that specify which users and groups can run certain elevated tasks on the system.<\/p>\n\n\n\n<p>Note that directly editing the sudoers file is not recommended as it can lock you out of sudo privileges, as well as potentially destroy the system if you make a typo and end up with an incorrect username or wrong command.&nbsp;<\/p>\n\n\n\n<p>Equally dangerous is losing your connection midway as you edit the sudoers file. A broken connection means that the last changes made to your disk will be saved, and these might contain broken syntax or incorrect sudo privilege definitions.<\/p>\n\n\n\n<p>The proper way of making changes to the sudo configuration is using the <strong>visudo<\/strong> command.<\/p>\n\n\n\n<p><code># visudo<\/code><\/p>\n\n\n\n<p>When executed, the command opens the <strong>\/etc\/sudoers<\/strong> file using the nano editor as shown.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" width=\"1024\" height=\"627\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8-1024x627.png\" alt=\"\" class=\"wp-image-70406\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8-1024x627.png 1024w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8-300x184.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8-768x470.png 768w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png 1167w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<p>Most lines are commented out and have no effect on the permissions assigned to users and groups. Scroll all the way down to the section that says <strong>#User privilege specification<\/strong>. Under that, you will see the root user defined as follows:<\/p>\n\n\n\n<p><code>root ALL=(ALL:ALL) ALL<\/code><\/p>\n\n\n\n<p>Some important notes on understanding this line:<\/p>\n\n\n\n<ul>\n<li>The root directive stands for the root user.<\/li>\n\n\n\n<li>The first \u201cALL\u201d indicates the rule applies to all hosts.&nbsp;<\/li>\n\n\n\n<li>The second \u201cALL\u201d indicates the root user can execute all commands as all users.<\/li>\n\n\n\n<li>The third \u201cALL\u201d indicates the root user can run all commands as all the user groups.<\/li>\n\n\n\n<li>The last \u201cALL\u201d indicates the rules are applicable to all commands.<\/li>\n<\/ul>\n\n\n\n<p>The following line indicates that the admin group can execute all commands as any user.&nbsp;<\/p>\n\n\n\n<p><code>%admin ALL=(ALL) ALL<\/code><\/p>\n\n\n\n<p>This next line shows that the sudo user can run any command as any user and as any group.<\/p>\n\n\n\n<p><code>%sudo ALL=(ALL:ALL) ALL<\/code><\/p>\n\n\n\n<p>While it is possible to edit the sudoers file directly using <strong>visudo<\/strong>, this is not the preferred approach. A better way of making changes to the configuration is by adding a new file containing new sudo rules in the <strong>\/etc\/sudoers.d<\/strong> directory, as described in the next section.<\/p>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"step6\">How to Restrict Sudo Users From Executing Certain Commands<\/h2>\n\n\n\n<p>As pointed out earlier, you can restrict sudo users from performing certain tasks on the system. Instead of directly editing the sudoers file, a better approach is to create a custom file for each user and place it in the <strong>\/etc\/sudoers.d <\/strong>directory.<\/p>\n\n\n\n<p>To illustrate this, we are going to create a rule called <strong>jumpcloud<\/strong> as follows.<\/p>\n\n\n\n<p><code># vim \/etc\/sudoers.d\/jumpcloud<\/code><\/p>\n\n\n\n<p>We will specify two rules, one that prevents the user from upgrading packages to their latest versions and another that prevents the user from installing any packages. To accomplish this, paste the following line of code into the file:<\/p>\n\n\n\n<p><code>jumpcloud ALL=!\/usr\/bin\/apt upgrade, !\/usr\/bin\/apt, !\/usr\/bin\/apt install<\/code><\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"972\" height=\"175\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-9.png\" alt=\"\" class=\"wp-image-70407\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-9.png 972w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-9-300x54.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-9-768x138.png 768w\" sizes=\"(max-width: 972px) 100vw, 972px\" \/><\/figure>\n\n\n\n<p>An exclamation mark (!) precedes the full binary path of the comma-separated commands. To find the full path of a command, run the <strong>which <\/strong>command as follows:<\/p>\n\n\n\n<p><code>$ which command<\/code><\/p>\n\n\n\n<p>For example, to find the full binary path of the <strong>apt upgrade<\/strong> command, run:<\/p>\n\n\n\n<p><code>$ which apt upgrade<\/code><\/p>\n\n\n\n<p>Similarly, run the following command to find the full path of the <strong>apt install<\/strong> command:<\/p>\n\n\n\n<p><code>$ which apt install<\/code><\/p>\n\n\n\n<figure class=\"wp-block-image size-full\"><img decoding=\"async\" width=\"757\" height=\"274\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-10.png\" alt=\"\" class=\"wp-image-70408\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-10.png 757w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-10-300x109.png 300w\" sizes=\"(max-width: 757px) 100vw, 757px\" \/><\/figure>\n\n\n\n<p>The <strong>!\/usr\/bin\/apt upgrade <\/strong>directive prevents the user from performing the <strong>sudo apt upgrade <\/strong>command while the&nbsp;<\/p>\n\n\n\n<p><strong>!\/usr\/bin\/apt, !\/usr\/bin\/apt install <\/strong>directives prevent the user from installing any packages using the <strong>sudo apt install <\/strong>command.<\/p>\n\n\n\n<p>With the custom rule in place, the user will not be able to upgrade system packages or install any software packages as demonstrated below.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" width=\"1024\" height=\"205\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-11-1024x205.png\" alt=\"\" class=\"wp-image-70409\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-11-1024x205.png 1024w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-11-300x60.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-11-768x154.png 768w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-11.png 1241w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\" id=\"step7\">How to Run Specific Sudo Commands Without a Password&nbsp;<\/h2>\n\n\n\n<p>Password prompts are not always desirable, especially when you want to automate tasks in shell scripts or run frequently carried out tasks such as refreshing the local repositories.<\/p>\n\n\n\n<p>As such, you might want to disable password prompts for commands that are frequently executed. To do so, use the <strong>NOPASSWD<\/strong> directive followed by the full path to the command.<\/p>\n\n\n\n<p>The sudo rule entry below disables password prompts when the user updates the local repositories.<\/p>\n\n\n\n<p><code>jumpcloud ALL=(ALL) NOPASSWD: \/usr\/bin\/apt update<\/code><\/p>\n\n\n\n<p>The sudo user can now update the repositories by running <strong>sudo apt update<\/strong> without being prompted for a password.<\/p>\n\n\n\n<figure class=\"wp-block-image size-large\"><img decoding=\"async\" width=\"1024\" height=\"399\" src=\"https:\/\/jumpcloud.com\/\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-12-1024x399.png\" alt=\"\" class=\"wp-image-70410\" srcset=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-12-1024x399.png 1024w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-12-300x117.png 300w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-12-768x299.png 768w, https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-12.png 1037w\" sizes=\"(max-width: 1024px) 100vw, 1024px\" \/><\/figure>\n\n\n\n<h2 class=\"wp-block-heading\">Conclusion<\/h2>\n\n\n\n<p>It\u2019s always a good idea to create and run the system as sudo to avoid breaking things in the event a command is run erroneously or otherwise. It&#8217;s also highly important to assign just the right amount of privileges sudo users need to run their tasks and revoke ones they don&#8217;t need to prevent undesirable outcomes.<\/p>\n\n\n\n<p>Managing the process to assign specific permissions to specific users can be overly time-consuming and quickly overwhelm your priorities, especially if you are facing a growing environment and a growing team.&nbsp;<\/p>\n\n\n\n<p>JumpCloud\u2019s <a href=\"https:\/\/jumpcloud.com\/blog\/linux-device-management\">Linux device management<\/a> capabilities make it easier to manage sudo access across entire fleets through its user security settings and permissions. To see how this works, along with a number of other device security and management features, <a href=\"https:\/\/console.jumpcloud.com\/signup\">sign up for your free triat today<\/a>. <\/p>\n","protected":false},"excerpt":{"rendered":"<p>In this tutorial, learn how to create a new sudo user, as well as manage sudo access and permissions, on Ubuntu 22.04.<\/p>\n","protected":false},"author":150,"featured_media":70406,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"_oasis_is_in_workflow":0,"_oasis_original":0,"_oasis_task_priority":"","inline_featured_image":false,"footnotes":""},"categories":[2781],"tags":[],"collection":[2778],"platform":[],"funnel_stage":[3017],"coauthors":[2535],"acf":[],"yoast_head":"<!-- This site is optimized with the Yoast SEO Premium plugin v22.9 (Yoast SEO v22.9) - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Create New Sudo User, Manage Access on Ubuntu 22.04 - JumpCloud<\/title>\n<meta name=\"description\" content=\"In this tutorial, learn how to create a new sudo user, as well as manage sudo access and permissions, on Ubuntu 22.04.\" \/>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"How to Create a New Sudo User &amp; Manage Sudo Access on Ubuntu 22.04\" \/>\n<meta property=\"og:description\" content=\"In this tutorial, learn how to create a new sudo user, as well as manage sudo access and permissions, on Ubuntu 22.04.\" \/>\n<meta property=\"og:url\" content=\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04\" \/>\n<meta property=\"og:site_name\" content=\"JumpCloud\" \/>\n<meta property=\"article:published_time\" content=\"2022-10-14T14:15:00+00:00\" \/>\n<meta property=\"article:modified_time\" content=\"2024-01-23T20:55:14+00:00\" \/>\n<meta property=\"og:image\" content=\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png\" \/>\n\t<meta property=\"og:image:width\" content=\"1167\" \/>\n\t<meta property=\"og:image:height\" content=\"714\" \/>\n\t<meta property=\"og:image:type\" content=\"image\/png\" \/>\n<meta name=\"author\" content=\"David Worthington\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"David Worthington\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"11 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"Article\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#article\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04\"},\"author\":{\"name\":\"David Worthington\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e\"},\"headline\":\"How to Create a New Sudo User &amp; Manage Sudo Access on Ubuntu 22.04\",\"datePublished\":\"2022-10-14T14:15:00+00:00\",\"dateModified\":\"2024-01-23T20:55:14+00:00\",\"mainEntityOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04\"},\"wordCount\":1710,\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png\",\"articleSection\":[\"How-To\"],\"inLanguage\":\"en-US\"},{\"@type\":\"WebPage\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04\",\"url\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04\",\"name\":\"Create New Sudo User, Manage Access on Ubuntu 22.04 - JumpCloud\",\"isPartOf\":{\"@id\":\"https:\/\/jumpcloud.com\/#website\"},\"primaryImageOfPage\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#primaryimage\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#primaryimage\"},\"thumbnailUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png\",\"datePublished\":\"2022-10-14T14:15:00+00:00\",\"dateModified\":\"2024-01-23T20:55:14+00:00\",\"description\":\"In this tutorial, learn how to create a new sudo user, as well as manage sudo access and permissions, on Ubuntu 22.04.\",\"breadcrumb\":{\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04\"]}]},{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#primaryimage\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png\",\"width\":1167,\"height\":714},{\"@type\":\"BreadcrumbList\",\"@id\":\"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/jumpcloud.com\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"How to Create a New Sudo User &amp; Manage Sudo Access on Ubuntu 22.04\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/jumpcloud.com\/#website\",\"url\":\"https:\/\/jumpcloud.com\/\",\"name\":\"JumpCloud\",\"description\":\"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.\",\"publisher\":{\"@id\":\"https:\/\/jumpcloud.com\/#organization\"},\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/jumpcloud.com\/?s={search_term_string}\"},\"query-input\":\"required name=search_term_string\"}],\"inLanguage\":\"en-US\"},{\"@type\":\"Organization\",\"@id\":\"https:\/\/jumpcloud.com\/#organization\",\"name\":\"JumpCloud\",\"url\":\"https:\/\/jumpcloud.com\/\",\"logo\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\",\"url\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"contentUrl\":\"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png\",\"width\":598,\"height\":101,\"caption\":\"JumpCloud\"},\"image\":{\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/\"}},{\"@type\":\"Person\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e\",\"name\":\"David Worthington\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d9acf1381c6e5b50c0f50d47b7b05411\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g\",\"caption\":\"David Worthington\"},\"description\":\"I'm the JumpCloud Champion for Product, Security. JumpCloud and Microsoft certified, security analyst, a one-time tech journalist, and former IT director.\",\"sameAs\":[\"https:\/\/jumpcloud.com\/blog\",\"david.worthington@jumpcloud.com\"]}]}<\/script>\n<!-- \/ Yoast SEO Premium plugin. -->","yoast_head_json":{"title":"Create New Sudo User, Manage Access on Ubuntu 22.04 - JumpCloud","description":"In this tutorial, learn how to create a new sudo user, as well as manage sudo access and permissions, on Ubuntu 22.04.","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04","og_locale":"en_US","og_type":"article","og_title":"How to Create a New Sudo User &amp; Manage Sudo Access on Ubuntu 22.04","og_description":"In this tutorial, learn how to create a new sudo user, as well as manage sudo access and permissions, on Ubuntu 22.04.","og_url":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04","og_site_name":"JumpCloud","article_published_time":"2022-10-14T14:15:00+00:00","article_modified_time":"2024-01-23T20:55:14+00:00","og_image":[{"width":1167,"height":714,"url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png","type":"image\/png"}],"author":"David Worthington","twitter_card":"summary_large_image","twitter_misc":{"Written by":"David Worthington","Est. reading time":"11 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"Article","@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#article","isPartOf":{"@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04"},"author":{"name":"David Worthington","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e"},"headline":"How to Create a New Sudo User &amp; Manage Sudo Access on Ubuntu 22.04","datePublished":"2022-10-14T14:15:00+00:00","dateModified":"2024-01-23T20:55:14+00:00","mainEntityOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04"},"wordCount":1710,"publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png","articleSection":["How-To"],"inLanguage":"en-US"},{"@type":"WebPage","@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04","url":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04","name":"Create New Sudo User, Manage Access on Ubuntu 22.04 - JumpCloud","isPartOf":{"@id":"https:\/\/jumpcloud.com\/#website"},"primaryImageOfPage":{"@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#primaryimage"},"image":{"@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#primaryimage"},"thumbnailUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png","datePublished":"2022-10-14T14:15:00+00:00","dateModified":"2024-01-23T20:55:14+00:00","description":"In this tutorial, learn how to create a new sudo user, as well as manage sudo access and permissions, on Ubuntu 22.04.","breadcrumb":{"@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04"]}]},{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#primaryimage","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2022\/10\/sudo-ubuntu-8.png","width":1167,"height":714},{"@type":"BreadcrumbList","@id":"https:\/\/jumpcloud.com\/blog\/how-to-create-sudo-user-manage-sudo-access-ubuntu-22-04#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/jumpcloud.com\/"},{"@type":"ListItem","position":2,"name":"How to Create a New Sudo User &amp; Manage Sudo Access on Ubuntu 22.04"}]},{"@type":"WebSite","@id":"https:\/\/jumpcloud.com\/#website","url":"https:\/\/jumpcloud.com\/","name":"JumpCloud","description":"Daily insights on directory services, IAM, LDAP, identity security, SSO, system management (Mac, Windows, Linux), networking, and the cloud.","publisher":{"@id":"https:\/\/jumpcloud.com\/#organization"},"potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/jumpcloud.com\/?s={search_term_string}"},"query-input":"required name=search_term_string"}],"inLanguage":"en-US"},{"@type":"Organization","@id":"https:\/\/jumpcloud.com\/#organization","name":"JumpCloud","url":"https:\/\/jumpcloud.com\/","logo":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/","url":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","contentUrl":"https:\/\/jumpcloud.com\/wp-content\/uploads\/2021\/01\/jc-logo-brand-2021.png","width":598,"height":101,"caption":"JumpCloud"},"image":{"@id":"https:\/\/jumpcloud.com\/#\/schema\/logo\/image\/"}},{"@type":"Person","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/185ca12034835ee50ee17b100abdfb2e","name":"David Worthington","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/jumpcloud.com\/#\/schema\/person\/image\/d9acf1381c6e5b50c0f50d47b7b05411","url":"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/a6dde901b469c9005c22973e42038d62?s=96&d=mm&r=g","caption":"David Worthington"},"description":"I'm the JumpCloud Champion for Product, Security. JumpCloud and Microsoft certified, security analyst, a one-time tech journalist, and former IT director.","sameAs":["https:\/\/jumpcloud.com\/blog","david.worthington@jumpcloud.com"]}]}},"_links":{"self":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/70398"}],"collection":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/users\/150"}],"replies":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/comments?post=70398"}],"version-history":[{"count":3,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/70398\/revisions"}],"predecessor-version":[{"id":103890,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/posts\/70398\/revisions\/103890"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media\/70406"}],"wp:attachment":[{"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/media?parent=70398"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/categories?post=70398"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/tags?post=70398"},{"taxonomy":"collection","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/collection?post=70398"},{"taxonomy":"platform","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/platform?post=70398"},{"taxonomy":"funnel_stage","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/funnel_stage?post=70398"},{"taxonomy":"author","embeddable":true,"href":"https:\/\/jumpcloud.com\/wp-json\/wp\/v2\/coauthors?post=70398"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}