linux中如何批量管理用戶和組

linux中如何批量管理用戶和組？這篇文章運用了實例代碼展示，代碼非常詳細，可供感興趣的小伙伴們參考借鑒，希望對大家有所幫助。

使用/etc/sudoers里設置用戶別名、命令別名來設置各個用戶類型所需要的權限和命令來控制用戶權限和所能使用的命令
主機別名
# Host_Alias     FILESERVERS = fs1, fs2

用戶別名
組別名

# User_Alias ADMINS = jsmith, mikem
# User_alias AdminsGroup=%xbin

命令別名
# Cmnd_Alias SOFTWARE = /bin/rpm, /usr/bin/up2date, /usr/bin/yum

配置
用戶  主機=(主機)     命令
root    ALL=(ALL)   ALL

sudoers文件配置
[root@xbin-S ~]# grep -v "##" /etc/sudoers

# Host_Alias     FILESERVERS = fs1, fs2
# Host_Alias     MAILSERVERS = smtp, smtp2

# User_Alias ADMINS = jsmith, mikem

# Cmnd_Alias NETWORKING = /sbin/route, /sbin/ifconfig, /bin/ping, /sbin/dhclient, /usr/bin/net, /sbin/iptables, /usr/bin/rfcomm, /usr/bin/wvdial, /sbin/iwconfig, /sbin/mii-tool

# Cmnd_Alias SOFTWARE = /bin/rpm, /usr/bin/up2date, /usr/bin/yum

# Cmnd_Alias SERVICES = /sbin/service, /sbin/chkconfig

# Cmnd_Alias LOCATE = /usr/bin/updatedb

# Cmnd_Alias STORAGE = /sbin/fdisk, /sbin/sfdisk, /sbin/parted, /sbin/partprobe, /bin/mount, /bin/umount

# Cmnd_Alias DELEGATING = /usr/sbin/visudo, /bin/chown, /bin/chmod, /bin/chgrp 

# Cmnd_Alias PROCESSES = /bin/nice, /bin/kill, /usr/bin/kill, /usr/bin/killall

# Cmnd_Alias DRIVERS = /sbin/modprobe

# Defaults specification

#
# Refuse to run if unable to disable echo on the tty.
#
Defaults   !visiblepw

#
# Preserving HOME has security implications since many programs
# use it when searching for configuration files. Note that HOME
# is already set when the the env_reset option is enabled, so
# this option is only effective for configurations where either
# env_reset is disabled or HOME is present in the env_keep list.
#
Defaults    always_set_home

Defaults    env_reset
Defaults    env_keep =  "COLORS DISPLAY HOSTNAME HISTSIZE INPUTRC KDEDIR LS_COLORS"
Defaults    env_keep += "MAIL PS1 PS2 QTDIR USERNAME LANG LC_ADDRESS LC_CTYPE"
Defaults    env_keep += "LC_COLLATE LC_IDENTIFICATION LC_MEASUREMENT LC_MESSAGES"
Defaults    env_keep += "LC_MONETARY LC_NAME LC_NUMERIC LC_PAPER LC_TELEPHONE"
Defaults    env_keep += "LC_TIME LC_ALL LANGUAGE LINGUAS _XKB_CHARSET XAUTHORITY"

#
# Adding HOME to env_keep may enable a user to run unrestricted
# commands via sudo.
#
# Defaults   env_keep += "HOME"

Defaults    secure_path = /sbin:/bin:/usr/sbin:/usr/bin

root    ALL=(ALL)   ALL
xbin    ALL=(ALL)   ALL

# %sys ALL = NETWORKING, SOFTWARE, SERVICES, STORAGE, DELEGATING, PROCESSES, LOCATE, DRIVERS

# %wheel    ALL=(ALL)   ALL

# %wheel    ALL=(ALL)   NOPASSWD: ALL

# %users  ALL=/sbin/mount /mnt/cdrom, /sbin/umount /mnt/cdrom

# %users  localhost=/sbin/shutdown -h now

#includedir /etc/sudoers.d
Defaults        logfile=/var/log/sudo.log

實戰命令
批量建立用戶

for user in chuji001 chuji002 chuji003 net001 senior001 manager001
do 
    useradd $user
    echo "111111" | passwd --stdin $user
done

for n in `seq 5`
do 
    useradd -g phpers php00$n
    echo "111111" | passwd --stdin php00$n
done

for user in kaifamanager001 seniorphpers
do
    useradd $user
    echo "111111" | passwd --stdin $user
done

sudoers 配置文件
Cmnd_Alias CY_CMD_1 = /usr/bin/free, /usr/bin/iostat ,/usr/bin/top, /bin/hostname, /sbin/ifconfig,/bin/netstat, /sbin/route

Cmnd_Alias GY_CMD_1 = /usr/bin/free, /usr/bin/iostat ,/usr/bin/top, /bin/hostname, /sbin/ifconfig,/bin/netstat, /sbin/route, /sbin/iptables, /etc/init.d/network, /bin/nice, /bin/kill/, /usr/bin/kill,/usr/bin/killall, /bin/rpm, /usr/bin/up2data, /user/bin/yum, /sbin/fdisk, /sbin/parted, /sbin/partprobe, /bin/mount, /bin/umount

Cmnd_Alias CK_CMD_1 = /usr/bin/tail /app/log*, /bin/grep /app/log*, /bin/cat, /bin/ls

Cmnd_Alias GK_CMD_1 = /sbin/service, /sbin/chkconfig, /bin/tail /app/log*, /bin/grep /app/log*, /bin/cat, /bin/ls, /bin/sh ~/scripts/deploy.sh

Cmnd_Alias GW_CMD_1 = /sbin/route, /sbin/ifconfig, /bin/ping, /sbin/dhclient, /usr/bin/net /sbin/iptables, /usr/bin/rfcomm, /usr/bin/wvdial, /sbin/iwconfig, /sbin/mii-tool, /bin/cat /var/log/*

User_Alias CHUJIADMINS = chuji001, chuji002, chuji003

User_Alias GWNETADMINS = net001

User_Alias CHUJI_KAIFA = %phpers

Runas_Alias OP = root

senior001   ALL=(OP)    GY_CMD_1
manager001  ALL=(ALL)   NOPASSWD:ALL
kaifamanager001 ALL=(ALL) ALL,  /usr/bin/passwd [A-Za-z]*,!/usr/bin/passwd root, !/usr/sbin/visudo, ~/usr/bin/vi *sudoer*
seniorphpers    ALL=(OP)    GK_CMD_1
CHUJIADMINS     ALL=(OP)    CY_CMD_1
GWNETADMINS ALL=(OP)    GW_CMD_1
CHUJI_KAIFA ALL=(OP)    CK_CMD_1

批量創建20個用戶，并設置密碼為用戶后隨機5位數
[root@xbin-S ~]# cat test5.sh

#!/bin/bash

export PTAH=/usr/local/sbin:/usr/local/bin:/usr/sbin:/usr/bin:/sbin:/bin:/usr/games:/usr/local/games:/snap/bin
for n in `seq 20`
do
        useradd user$n
        echo "user$n`echo user$n|md5sum | cut -c1-5`" | passwd --stdin user$n
        echo "user$n:user$n`echo user$n|md5sum | cut -c1-5`" >> /tmp/user_passwd.txt
        #echo "user$n`echo user$n|md5sum | cut -c1-5`"
done

看完這篇文章，你們學會在linux中批量管理用戶和組了嗎？如果還想學到更多技能或想了解更多相關內容，歡迎關注億速云行業資訊頻道，感謝各位的閱讀。