Hello, Ryan.
We have a 'mimic' command for such support persons. A support person may mimic
any user in the same ${department}, as long as they are in the
${department}-admin unix group. This is enabled with a sudoers config line per
dept and an SSH key per user restricted to the local
>
> Does anyone have a particularly polished way of offering access to user
files to non-root users for the purposes of job troubleshooting or the
like?
acl[0] would do the job nicely, just make sure the filesystem in question
is mounted with the acl option then, a user experiencing problems can