How to Create a User in Linux: Step-by-Step Guide

Creating a User in Linux: A Complete Guide

A man with short, light brown hair and a trimmed beard, wearing a beige sweater, looks directly at the camera against a dark background. Liutauras Morkaitis

User management is a critical component of system administration in Linux, providing administrators control over system security, organization, and access rights. This guide explores how users are created, managed, and maintained within Linux, incorporating best practices for system integrity and user experience.

Quick start: create a new Linux user safely (VPS-friendly)

If you’re creating a user on a Linux server/VPS, the safest default workflow is:

  1. Create the user (with a home directory)
  • Debian/Ubuntu often use: sudo adduser username
  • Any distro (explicit + script-friendly): sudo useradd -m -s /bin/bash username

Tip: On many systems, useradd behavior depends on defaults (CREATE_HOME, USERGROUPS_ENAB, etc.), so using “-m” makes home directory creation explicit and consistent. man7.org

  1. Set a password (if you plan to allow password login)
  • sudo passwd username
  1. Grant admin privileges only if needed (sudo)
  • Ubuntu/Debian commonly: sudo usermod -aG sudo username
  • RHEL/CentOS/Rocky commonly: sudo usermod -aG wheel username
  1. (Recommended) Set up SSH keys for the new user, then disable password login for SSH (optional hardening). See the SSH section below.
  2. Verify everything works
  • id username
  • getent passwd username
  • sudo -l (after switching to that user)

The goal is simple: create a user that can log in and do what they need—without giving unnecessary root-level access.

Introduction to User Management in Linux [Linux Create User Method]

As a multi-user operating system, Linux enables concurrent access for multiple users within a single environment. This capability necessitates a robust user management framework to define user roles, regulate access, and protect system resources. Linux user management involves creating, modifying, and deleting user accounts, each with specific permissions and restrictions. These actions are controlled primarily through command-line tools, like useradd, adduser, and usermod in the “linux create user” method.

User accounts in Linux are essential for organizing system access levels, differentiating between standard and administrative accounts, and applying group permissions. By default, user information is stored in configuration files such as /etc/passwd, which logs user IDs, and /etc/shadow, which securely stores passwords.

A person using a laptop on a desk next to an orange external hard drive. Soft lighting and a plant in the foreground create a relaxed atmosphere.

Where Linux stores user and password data (and how to read it safely)

Linux user accounts are defined by a few core files and databases:

  • /etc/passwd: the public user account list (username, UID, GID, home directory, login shell, etc.). Modern systems usually store “x” in the password field and keep password hashes elsewhere.
  • /etc/shadow: stores password hashes plus password aging/expiration data; it must not be readable by regular users.
  • /etc/group: group membership and group IDs (GIDs).

Instead of “cat”-ing files directly, a best practice for portability (local users, LDAP/NIS, etc.) is using NSS-aware lookups:

  • getent passwd username
  • getent group groupname

The getent command queries the system’s configured name service switch (NSS) sources, so it works even when users/groups come from directory services.

What is the useradd Command in Linux? [Create User Linux Practice]

The useradd command is a fundamental utility for creating users. It is highly customizable, providing options to specify details like home directory, shell type, and initial user group. Unlike adduser, useradd is a low-level command, ideal for scripting and advanced configurations in the “create user linux” process. Its syntax:

useradd [options] username

Options include:

  • -m: Creates a home directory if it doesn’t already exist.
  • -s: Defines the user’s default shell.
  • -G: Adds the user to additional groups beyond the default group.

The useradd command is best suited for users familiar with Linux administration, as it requires specific flags for customization and doesn’t prompt for information interactively.

Using the useradd Command: A Step-by-Step Guide [Useradd Linux Technique]

To create a user with the useradd command, follow these steps:

  1. Open the Terminal: Use Ctrl+Alt+T to open the command line.
  2. Execute the Command: Type sudo useradd -m -s /bin/bash username to create a user with a home directory and set their shell to Bash.
  3. Set a Password: Assign a password using sudo passwd username, which will prompt for password input.
  4. Verify User Creation: Confirm the user has been created by using id username, displaying their user ID and group memberships.

Each of these steps provides control over essential attributes, allowing administrators to tailor user accounts to organizational needs in the “useradd linux” practice.

What’s the Difference Between adduser and useradd?

The adduser command serves as an accessible, high-level script designed to streamline the user creation process by prompting for essential information, such as a username, password, and optional metadata like a full name. Unlike the useradd command, which requires specific options for each configuration, adduser automatically establishes a home directory and assigns the user to a group of the same name. This makes it particularly suitable for administrators who favor a guided approach over useradd’s more flexible, scriptable structure that necessitates detailed command options to achieve similar outcomes.

Distro note: adduser and useradd don’t behave identically everywhere

A common point of confusion: “adduser” is not the same across all Linux families.

  • On Debian-based systems, adduser/addgroup are intended as a policy layer (a friendlier interface that follows distro conventions).
  • On other distributions, you may find adduser behaves differently (or may not be present in the same form). If you want predictable behavior across servers, useradd with explicit flags is the most consistent approach.

Practical takeaway:

  • For interactive creation on Debian/Ubuntu: adduser is convenient.
  • For automation, scripts, and consistency: useradd with explicit options is the safer default.

Adding Users with the adduser Command [Linux Add User Practice]

The adduser command simplifies account setup, allowing for a more interactive experience:

sudo adduser username

When executed, adduser will prompt for:

  • Username and password
  • Optional metadata (e.g., user’s full name)
  • Default settings, including home directory and shell

This user-friendly “linux add user” approach is especially useful for administrators needing to quickly onboard users without extensive customization.

Advanced useradd examples (common real-world scenarios)

The “best” way to create a user depends on what that account is for. Below are patterns administrators use constantly.

Create a user with a custom home directory

  • sudo useradd -m -d /srv/apps/appuser -s /bin/bash appuser

Why: some deployment users shouldn’t live in /home, especially on servers where /home is small or mounted differently. The -d flag sets the home directory path; -m creates it if needed.

Create a user with a descriptive comment (helps audits)

  • sudo useradd -m -c “Deploy user for Project X” deploy

The comment field is commonly used for a real name, team, or purpose, which makes reviews easier later.

Create a user that expires on a specific date (temporary contractors)

  • sudo useradd -m -e 2026-03-31 contractor1

This sets an account expiration date (useful for temporary access policies).

Create a system/service account (non-human)

  • sudo useradd -r -s /usr/sbin/nologin serviceacct

System accounts use the system UID range and (by default) do not get a home directory unless you explicitly request one.

Important caution: avoid passing passwords on the command line
While useradd supports setting an initial password value via an option, man pages explicitly warn against using command-line password flags because process listings can expose them. Use passwd interactively or a safer provisioning mechanism instead.

How to Add User in Linux Using the Terminal? [Add User Linux Program]

Adding a user in Linux through the terminal is efficient and ensures that account creation follows the required parameters for a secure setup. The terminal is particularly effective in server environments where graphical interfaces may not be available, making terminal commands the default method for managing users.

To execute “add user linux” via the terminal, follow these steps:

  1. Open the Terminal: Access the command line.
  2. Execute the adduser Command: Type sudo adduser [username], replacing [username] with the desired username.
  3. Follow Prompts: You’ll be prompted to enter a password, and you may provide additional details, like the user’s full name.
  4. Verify Creation: Confirm the new user by running id [username].

This process sets up the user with a home directory and default settings.

Managing User Permissions with Groups [Linux Useradd Modification]

Groups in Linux Useradd simplify permissions by assigning shared access rights to users with similar roles. Use the usermod command to add a user to specific groups:

sudo usermod -aG groupname username

By placing users into groups with predefined permissions, administrators reduce redundancy and enhance security by ensuring permissions are logically organized and applied.

Group management: the #1 mistake that breaks access

When adding a user to groups, most admins want to APPEND a group without removing existing groups.

Use:

  • sudo usermod -aG groupname username

Why this matters: without “-a” (append), usermod -G replaces the user’s supplementary group list, which can accidentally remove important access. The man page calls this behavior out directly.

How to confirm group membership

  • id username
  • getent group groupname

This gives you a quick verification loop before and after changes.

How to Delete and Manage Users in Linux

Effective user management involves regularly reviewing and adjusting account settings, group memberships, and access levels. Administrators should periodically remove unused accounts, adjust group permissions, and maintain comprehensive records of account activities.

Commands for management:

  • userdel: Deletes accounts
  • groupdel: Removes groups when no longer needed
  • usermod: Modifies user details, including group membership and permissions

Best Practices for Managing Users in Linux [linux make user Management]

  1. Adopt Unique Usernames: Ensures clarity in user identification and minimizes conflicts.
  2. Enforce Strong Passwords: Require complex passwords and regular updates.
  3. Limit Permissions: Apply only essential permissions to each user, reducing potential for misuse.
  4. Organize Permissions with Groups: Assign users to groups to streamline permissions and simplify future adjustments.
  5. Regularly Audit Accounts: Review all accounts periodically to ensure they align with current security policies and access requirements.

Common Pitfalls When Adding Users in Linux

Some of the most frequent challenges include misconfiguring permissions, unintentionally assigning root-level access, and neglecting to set up home directories for new users. These issues can expose systems to vulnerabilities and hinder user productivity. Using tools like useradd and adduser thoughtfully and consistently following best practices minimizes risks and optimizes system security.

In summary, user management in Linux requires understanding command-line tools, employing best practices, and applying a methodical approach to permissions and account maintenance. 

A person types on a keyboard in a dimly lit room with two monitors displaying code. A small plant and headphones are on the desk, creating a focused programming atmosphere.

How to grant sudo access safely (and how to avoid locking yourself out)

Most “create user” searches on VPS hosting are actually asking: “How do I create a non-root admin user?”

Option A: Add user to the admin group (recommended default)

  • Ubuntu/Debian typically use the “sudo” group.
  • RHEL/CentOS/Rocky typically use the “wheel” group.

Option B: Use /etc/sudoers.d for custom rules (advanced)
If you must customize privileges, the safest workflow is:

  • Edit sudo policy with visudo (it validates syntax and helps prevent configuration errors).
  • Prefer drop-in files when supported, since sudoers can include additional directories/files via include directives.

Verification checklist (do this before logging out!)

  • Switch to the new user and run: sudo -l
  • Or test a harmless command: sudo whoami (should output “root” if sudo works)

This prevents the classic “I created a user and lost admin access” outage.

SSH access for the new user (recommended for servers)

On hosting/VPS environments, key-based SSH is usually safer and more reliable than passwords.

Server-side steps overview:

  1. Create the user normally (useradd/adduser).
  2. Create the user’s ~/.ssh directory and authorized_keys file.
  3. Set correct permissions.

Typical secure permissions:

  • ~/.ssh directory: 700
  • authorized_keys: 600
  • private keys (client-side): 600

Incorrect permissions are a very common reason SSH keys “don’t work,” and many providers recommend these exact permission levels.

After keys work, optional hardening steps (depends on your environment/policy):

  • Disable SSH password authentication
  • Disable root SSH login
  • Use fail2ban / rate-limiting
    (Only do these if you have confirmed key-based access works.)

Conclusion

Effective user management in Linux is vital for maintaining a secure and organized multi-user environment. By comprehensively understanding the command-line tools available for user creation, modification, and deletion, system administrators can control access and define roles with precision. Implementing best practices, such as structuring permissions, organizing groups, and regularly auditing accounts, strengthens system security and optimizes user management. Following these practices not only protects resources but also ensures efficient operation within Linux systems, promoting both security and functionality.

FAQ

How Do I Create a User in Linux? [create new user linux]

Creating a new user in Linux requires assigning a unique username, designating a home directory, and setting an initial password. The process can be initiated through commands like useradd and adduser, each offering distinct functionalities. Creating users is typically performed by system administrators to maintain control over access and usage.

How Do I Delete a User in Linux?

Removing user accounts is necessary when a user leaves or no longer requires access. The userdel command deletes the account, and with the -r flag, it also removes the user’s home directory and associated files:

sudo userdel -r username

Careful deletion of user accounts mitigates security risks associated with abandoned accounts, which can become potential entry points for unauthorized access.

How Can I Assign Permissions to a New Linux User? [linux create new user]

Permissions are crucial for defining a user’s scope of actions on the system. Assigning permissions involves setting file access levels (chmod command), adjusting user group memberships (usermod command), and establishing secure user roles.

How do I create a user without a password (SSH-key only)?

On Debian-based systems, adduser supports creating a user without setting a password using a dedicated option. Note that “no password” does not necessarily mean “no login,” because SSH keys or PAM-based methods can still allow access.

How do I create a user without a home directory?

With useradd, you can control home directory creation using flags and defaults (for example, the option that disables home directory creation even if system defaults would create one).

How do I create a service account that cannot log in interactively?

Use a system account and set the shell to nologin. Debian’s adduser –system also defaults system users to /usr/sbin/nologin unless you set a shell explicitly.

What’s the safest way to add a user to groups?

Use usermod with “append” to avoid overwriting existing supplementary groups.

Why doesn’t “userdel -r” remove everything the user ever touched?

Because it removes the home directory and mail spool, but files in other locations/filesystems must be found and removed manually.

How do I set an account to expire automatically?

useradd/usermod support an expiration date field (for example, YYYY-MM-DD). This is a clean solution for temporary access.

How do I enforce password rotation?

Use chage to configure password expiration information; those values are stored in the shadow file fields.

About The Author
A man with short, light brown hair and a trimmed beard, wearing a beige sweater, looks directly at the camera against a dark background.
Liutauras Morkaitis
Liutauras is the Head of Customer Support Team with five years of experience in the fast-paced cloud hosting industry. With a strong passion for software engineering and cloud computing, he continuously strives to expand his technical expertise while prioritizing client satisfaction. Liutauras is committed to proactive support and providing valuable insights to help clients maximize their cloud environments.
Subscribe to our newsletter