What is the safest way to give a teacher the rights to add users without them having any access to root's password or group? If not safest, easiest. BK -- "I don't know" isn't a penalty or an excuse. It's an opportunity.