The SRC administrator role can be used to grant a user SUDO or administrator privileges in workspaces started for a CO. Most standard workspaces give all users SUDO privileges, in the case of Linux, or Administrator rights in case of windows.
We have the option to change this to only members of the SRC administrator role in custom created catalog items Create your own applications, and in future SURF managed catalog items.
If in your chosen workspace-application, the use of SUDO is constrained to members of the "src_co_admin" group, Linux will prompt you for a password, when using SUDO.
This password is your TOTP code. You can set your TOTP code as described here: Log in to your workspace - Workspace access with TOTP
Managing the "src_co_admin" group
An admin of the collaboration can log in to the SRAM-portal and add and manage the group as shown below.
- Log in to the Research Access portal
- Select the "Collaborations" tab
- Select the collaboration
- Select the "Groups"-tab
- Select the group "src_co_admin"
- Add or remove the group-members as required
If the group "src_co_admin " does not exist, yet, create it with "Create new group".
Use "src_co_admin" as the short name, too. Otherwise the group will not be recognized as the SRC administrators group.
Note that it might take up to five minutes for these changes to take effect in the Research Cloud portal!