sudo allows to run superuser commands as a normal user (in the meaning of becoming root for a certain action – without knowing the root password.

Therefore those users who are allowed to do-as-a-superuser must be defined in a sudoers list.

• become root to configure the sudoers

su

• edit the sudoer's list using visudo

$> visudo

• enter for each user the id and the applications she/he is allowed to sudu them, e.g. for the TSM client:

%YOUR-GROUP    ALL = NOPASSWD: /usr/bin/dsmc, /opt/tivoli/client/ba/bin/dsmc

important: the line must start with an percent sign (%)