How to create extra root user?
Solution 1
You can't. root is a special user with uid 0. Use sudo instead.
Solution 2
Premise: using sudo (as suggested by the accepted answer) probably is the correct solution at your problem.
That said, if you really need something resembling a second root account, you can create an alias to the system root account.
To do that, follow these steps:
- open
/etc/passwd - locate the
rootaccount line (often the very first line). It will be something similar toroot:x:0:0:root:/root:/bin/bash - copy/paste it changing the first
rootoccurence inroot2(ie: changing it inroot2:x:0:0:root:/root:/bin/bash) - save your changes and exit the text editor
- issue
passwd root2and enter the new password
Note: if you whish, you can avoid direct editing the /etc/passwd file by replacing steps 1-3 with the following command: useradd -o -u 0 -g 0 -N -d /root/ -M root2 (see useradd --help for more information about the required options)
At this point, you can login using not only the original root account (with its original password), but also using the new root2 account (with its new password).
Anyway, remember that it is an alias of an existing user, rather than a completely new user. This means that any files created while logged as root2 have the very same numerical oid/gid of the original system root account (which has 0 as both uid and gid).
Solution 3
This used to be somewhat common (before sudo alleviated the need).
The toor user (yes, that's "root" spelled backwards) is the most common alternate root user, sharing the special UID of zero with root. See also this Super User question: Does the root account always have UID/GID 0?
This is the purpose of useradd --non-unique (useradd -o). I believe you want something like:
useradd --non-unique --uid 0 root2
You should be able to give the account any that doesn't already exist on your system.
I do not recommend this. You're far better off with one true root user, reserved for emergency console access. Admins should all instead use sudo. Especially remote admins (it is wise to prohibit root from connecting via ssh or other remote services, especially w.r.t. password logins).
Related videos on Youtube
25 : 12
07 : 50
![[ AWS 2 ] Create an admin user account and stop using root account](https://i.ytimg.com/vi/nIyhr4vCGuc/hq720.jpg?sqp=-oaymwEcCNAFEJQDSFXyq4qpAw4IARUAAIhCGAFwAcABBg==&rs=AOn4CLBlEzdQIiKBmOeYUSP4Tzv4GRazrA)
12 : 49
02 : 21
02 : 22
Jasmine Lognnes
Updated on September 18, 2022Comments
-
Jasmine Lognnes over 1 year
I have tried making a root2 user which should have the same permissions as root by doing
useradd -g root root2 passwd root2 usermod -G root root2 usermod -aG wheel root2but root2 can still not cat /etc/shadow as an example.
How can I create such user?
-
Jasmine Lognnes over 6 yearsInteresting! With my above commands
root2have a GID of 0, how come that doesn't give the user full root privileges? -
dortegaoh over 6 yearsbecause a GID is not a UID.
-
Jasmine Lognnes over 6 yearsSo what does it give
root2to have GID of 0? -
FooBee over 6 yearsNothing that would give it real root permissions (aka is allowed to do everything). You can access files that are group-accessible for group
root, but that's about it. -
dmourati over 6 yearsYou can in fact have multiple root users. Just use a text editor to change root2 uid to 0. tldp.org/LDP/LGNET/48/tag/16.html
-
FooBee over 6 years@dmourati: Yes, I know this but this will be essentially the same user, because the user id is the same and you might end up with some hard-to-understand side effects. Using
sudois simple and effective.
