{"id":733,"date":"2014-12-02T14:54:29","date_gmt":"2014-12-02T12:54:29","guid":{"rendered":"http:\/\/www.h-hennes.fr\/blog\/?p=733"},"modified":"2014-12-02T14:54:29","modified_gmt":"2014-12-02T12:54:29","slug":"ubuntu-server-14-04-trusty-tahr-creation-dun-utilisateur-avec-des-droits-dadministration","status":"publish","type":"post","link":"https:\/\/www.h-hennes.fr\/blog\/2014\/12\/02\/ubuntu-server-14-04-trusty-tahr-creation-dun-utilisateur-avec-des-droits-dadministration\/","title":{"rendered":"Ubuntu Server 14.04 \u00ab Trusty Tahr \u00bb : Cr\u00e9ation d’un utilisateur avec des droits d’administration"},"content":{"rendered":"

Lors de la r\u00e9ception du serveur, il n’existe en g\u00e9n\u00e9ral qu’uniquement un utilisateur \u00ab\u00a0root\u00a0\u00bb sur la machine.
\nCelui-ci dispose de l’ensemble des privil\u00e8ges,c’est pourquoi pour des raisons de s\u00e9curit\u00e9 il est n\u00e9cessaire de cr\u00e9er un autre utilisateur administrateur.
\nC’est celui-ci qui sera utilis\u00e9 pour r\u00e9aliser l’ensemble des actions sur le serveur ( nous emp\u00eacherons plus tard le login de l’utilisateur root )<\/p>\n

Voici les commandes \u00e0 ex\u00e9cuter pour cr\u00e9er cet utilisateur et lui donner les droits d’acc\u00e8s coh\u00e9rents ( Ubuntu Server 14.04 \u00ab\u00a0Trusty Tahr\u00a0\u00bb )<\/p>\n

#Cr\u00e9ation de l'utilisateur \"herve\" ( renseignez ensuite le mot de passe et les informations demand\u00e9es )\r\nadduser herve\r\n#ajout de l'utilisateur \"herve\" au groupe sudo\r\ngpasswd -a herve sudo\r\n<\/pre>\n
Et voila le nouvel utilisateur est en place.
\nPour finaliser la cr\u00e9ation de cet acc\u00e8s, nous allons mettre en place une authentification par cl\u00e9 SSH
\nPour cr\u00e9er ces cl\u00e9s sous windows avec putty, la proc\u00e9dure est la m\u00eame que dans cet article : Cr\u00e9er cl\u00e9s ssh avec PuttyGen<\/a><\/p>\n
Il faut ensuite se connecter en ssh avec le nouvel utilisateur, pour cr\u00e9er un dossier .ssh et cr\u00e9\u00e9r le fichier authorized_keys<\/p>\n
#creation du dossier ssh\r\nmkdir .ssh\r\n#mise \u00e0 jour des droits du dossier\r\nchmod 700 .ssh\r\n#creation du fichier authorized_keys\r\nvim .ssh\/authorized_keys\r\n<\/pre>\n
Copier la cl\u00e9 publique dans le fichier authorized_keys puis le sauvegarder ( clic droit pour coller , Echap puis :wq pour sauvegarder le fichier )
\nMettre \u00e0 jour les droits du fichier<\/p>\n
chmod 600 .ssh\/authorized_keys\r\n<\/pre>\n
La cr\u00e9ation du nouvel utilisateur est maintenant termin\u00e9e \ud83d\ude42<\/p>\n
Pour terminer nous allons donc d\u00e9sactiver l’authentification root en \u00e9ditant le fichier \/etc\/ssh\/sshd_config<\/p>\n
sudo vim \/etc\/ssh\/sshd_config\r\n<\/pre>\n
Rechercher la ligne
\nPermitRootLogin yes
\net la remplacer par
\nPermitRootLogin no<\/p>\n
Pour terminer cette manipulation, sauvegarder le fichier et red\u00e9marrer ssh pour prendre en compte le changement de configuration<\/p>\n
sudo service ssh restart\r\n<\/pre>\n","protected":false},"excerpt":{"rendered":"
Lors de la r\u00e9ception du serveur, il n’existe en g\u00e9n\u00e9ral qu’uniquement un utilisateur \u00ab\u00a0root\u00a0\u00bb sur la machine. Celui-ci dispose de l’ensemble des privil\u00e8ges,c’est pourquoi pour des raisons de s\u00e9curit\u00e9 il est n\u00e9cessaire de cr\u00e9er un autre utilisateur administrateur. C’est celui-ci qui sera utilis\u00e9 pour r\u00e9aliser l’ensemble des actions sur le serveur ( nous emp\u00eacherons plus […]<\/p>\n","protected":false},"author":2,"featured_media":0,"comment_status":"open","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"site-sidebar-layout":"default","site-content-layout":"","ast-site-content-layout":"default","site-content-style":"default","site-sidebar-style":"default","ast-global-header-display":"","ast-banner-title-visibility":"","ast-main-header-display":"","ast-hfb-above-header-display":"","ast-hfb-below-header-display":"","ast-hfb-mobile-header-display":"","site-post-title":"","ast-breadcrumbs-content":"","ast-featured-img":"","footer-sml-layout":"","ast-disable-related-posts":"","theme-transparent-header-meta":"","adv-header-id-meta":"","stick-header-meta":"","header-above-stick-meta":"","header-main-stick-meta":"","header-below-stick-meta":"","astra-migrate-meta-layouts":"default","ast-page-background-enabled":"default","ast-page-background-meta":{"desktop":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"ast-content-background-meta":{"desktop":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"tablet":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""},"mobile":{"background-color":"var(--ast-global-color-5)","background-image":"","background-repeat":"repeat","background-position":"center center","background-size":"auto","background-attachment":"scroll","background-type":"","background-media":"","overlay-type":"","overlay-color":"","overlay-opacity":"","overlay-gradient":""}},"footnotes":""},"categories":[254],"tags":[298,297],"class_list":["post-733","post","type-post","status-publish","format-standard","hentry","category-serveurs-dedies","tag-adduser","tag-linux"],"aioseo_notices":[],"_links":{"self":[{"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/posts\/733","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/users\/2"}],"replies":[{"embeddable":true,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/comments?post=733"}],"version-history":[{"count":1,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/posts\/733\/revisions"}],"predecessor-version":[{"id":734,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/posts\/733\/revisions\/734"}],"wp:attachment":[{"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/media?parent=733"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/categories?post=733"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.h-hennes.fr\/blog\/wp-json\/wp\/v2\/tags?post=733"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}