Software Development

Web applications, mobile, e-commerce and custom software projects.

ReactNode.jsMobile

SEO & Optimization

Organic traffic growth, technical SEO, content strategy and analytics.

Technical SEOContentAnalytics

API & Integration

REST API, webhook infrastructure, payment and shipping integrations.

REST APIWebhookOAuth
View all services Get free consultation

Web Hosting

cPanel management panel, SSD storage, free SSL certificate

Get a Quote

VPS Server

NVMe SSD, full root access, DDoS protection included

Get a Quote
Popular

Dedicated Server

Fully dedicated physical server, unlimited traffic

Get a Quote

Domain & SSL

Domain registration, transfer and Wildcard SSL certificates

Get a Quote

Why KEYDAL?

  • 99.9% uptime guarantee
  • Istanbul data center
  • 24/7 support
  • Free migration service
Get a quote

Projelerimiz

kSvSecurity, kAI, kMusic ve daha fazlası.

About Us

Meet KEYDAL. Our vision, team and journey.

Contact

Tell us about your project, get a custom quote.
Contracts
Privacy Policy Terms of Service SLA Agreement Data Protection Notice Cookie Policy
01 Home
Software Development SEO & Optimization API & Integration
Web Hosting VPS Server Dedicated Server Domain & SSL
04 KEYDAL Projects 05 Tools 06 Blog
About Us Contact Contracts
Get a Quote
Blog / hosting

Linux User and Group Management: useradd, sudo and Authorization

guide 9 min read April 23, 2026
Founder of KEYDAL · Full-stack developer

Setting up a correct user and group structure on a server is the foundation of both security and orderly management. Doing everything as root is a serious risk; instead you should distribute privileges across users and groups. This guide explains Linux user and group management together with sudo authorization.

Related reading: Linux file permissions · Connecting to a server with SSH

The User and Group Concept on Linux

Linux is a multi-user system. Each user has an identity (UID), a home directory and a shell. A group is the way to collect multiple users under a shared privilege — for example, giving an entire web team access to one directory.

There are two kinds of users on the system: normal users for real people, and system users used to run services (for example www-data for the web server).

Creating and Managing Users

Creating a new user and setting its home directory and password is done with a few commands:

# Create a new user (with home directory)
sudo adduser james

# Set/change the user's password
sudo passwd james

# Delete the user (along with the home directory)
sudo deluser --remove-home james

adduser is interactive and user-friendly; the lower-level useradd is more suitable for scripts. To modify an existing user you use usermod.

Creating Groups and Adding Users

Groups let you grant the same privilege to multiple users from a single point:

# Create a new group
sudo groupadd webteam

# Add a user to a group (-aG: preserving existing groups)
sudo usermod -aG webteam james

# View a user's groups
groups james

Authorization with sudo

sudo lets a user run commands that require administrator privileges without the root password and in an auditable way. Giving a user administrator rights is done by adding them to the sudo group (wheel on RHEL-based systems):

# Give the user sudo privileges
sudo usermod -aG sudo james
Tip
Always edit the sudoers file with the visudo command. visudo checks the syntax before saving; direct editing can break all sudo access if there is an error.

The Principle of Least Privilege

The golden rule of server security is the principle of least privilege: give every user and service only the minimum privilege needed to do its job.

  • Use a normal user + sudo instead of root for daily work.
  • Create a separate user for each team member — a shared account leaves "who did what" unanswered.
  • Run services under their own system user, not under root.
  • Disable the account of departing staff without delay.

Frequently Asked Questions

What is the difference between adduser and useradd?

adduser is a high-level, interactive script; it sets up the home directory and basic settings automatically. useradd is the lower-level command — it needs more parameters but is preferred in scripts.

How do I remove a user's sudo privileges?

Remove the user from the sudo group: sudo deluser james sudo. The change takes effect at the user's next login.

Should I disable the root account entirely?

You do not need to delete the root account; however, it is recommended to disable direct root SSH login (PermitRootLogin no) and do daily work with a normal user + sudo.

Secure Server Management

Set up your user, group and privilege structure correctly from the start with KEYDAL VPS. Explore KEYDAL hosting

Written by

Founder and principal engineer of KEYDAL. Serving enterprise clients in hosting, software development and SEO since 2026.

Related Articles

Readers of this article also read these

hosting 8 min

File Management with FTP and SFTP: Secure File Transfer to a Server

What are FTP and SFTP and what is the difference? Secure file transfer to a server, FTP clients and why you should use SFTP instead of FTP.
hosting 8 min

Setting Up a Staging Environment: Safe Testing Before Going Live

What is a staging environment and why is it needed? Testing changes without risking the live site, staging setup and the deployment flow to production.
hosting 9 min

Load Balancing: What It Is and How It Works

What is load balancing and how does it work? Load balancer logic, distribution algorithms, health checks, high availability and session management.
WhatsApp