Bug 814769 - fips install: anaconda should add the new user to /etc/sudoers and/or group wheel
Summary: fips install: anaconda should add the new user to /etc/sudoers and/or group w...
Keywords:
Status: CLOSED NOTABUG
Alias: None
Product: Fedora
Classification: Fedora
Component: firstboot
Version: 17
Hardware: Unspecified
OS: Unspecified
unspecified
unspecified
Target Milestone: ---
Assignee: Martin Gracik
QA Contact: Fedora Extras Quality Assurance
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2012-04-20 15:36 UTC by Paul Wouters
Modified: 2013-07-04 13:02 UTC (History)
8 users (show)

Fixed In Version:
Clone Of:
Environment:
Last Closed: 2012-05-02 11:09:11 UTC
Type: Bug
Embargoed:

Attachments (Terms of Use)

Description Paul Wouters 2012-04-20 15:36:24 UTC 
Description of problem:
When installing F17 the user added during install does not appear in /etc/sudoers or the wheel group. As a result, the user cannot use sudo.

In fips mode, su and direct login as root are rejected, so the result is that one needs to boot into non-fips mode just to be able to login as root to edit the groups or sudoers file
Comment 1 Jesse Keating 2012-04-20 15:50:28 UTC 
Was this kickstart or interactive install?  An interactive install doesn't do user creation in the installer, that's handled post-install by firstboot.

If it's kickstart, then anaconda does create the user.  A workaround for when you're in kickstart is using %post to modify sudoers.  The user kickstart directive has a --group option that lets you specify additional groups, such as wheel.

https://fedoraproject.org/wiki/Anaconda/Kickstart#user
Comment 2 Paul Wouters 2012-04-21 23:10:31 UTC 
interactive install, so re-assigned to firstboot
Comment 3 Martin Gracik 2012-05-02 11:09:11 UTC 
If you check the "add to administrators group" when creating the user, it will add the user to the wheel group.
Note You need to log in before you can comment on or make changes to this bug.