Allowing a user administrative tasks without roots password

[Louis Garcia]

I was wondering if it was possible to create a root like account but
having it locked. This way you can control who has access to what
without having to give up roots password.

Lets say you allow users to change the clock. They call up the Date &
Time capplet but instead of giving roots password they give this new
account password. So now a user can modify the time but not be able to
log in as root and do horrible thinks.

Is this doable, or is more complicated? Maybe ACL would be better for
this.


--Lou