Can I use the sudo command while logged into a standard account using an admin password?

Yes, it is. Unless the sudoers configuration file has been changed, only administrator accounts will be allowed to use it.

(126556)

By default, "No". Yes this is normal and how the sudo command works.

The user you are logged in as must be in the /etc/sudoers file, or a group that the current user belongs to is in the /etc/sudoers file (Admins belong to the group 'admin' which has an entry in /etc/sudoers).

If you decide to edit the /etc/sudoers file be VERY careful or you can prevent the admin from elevating their privileges.

But of course if you enter your non-admin user into the /etc/sudoers file, then the will be an admin, so you might as well either user the admin account or use System Preferences -> Users & Groups to give the non-admin account admin rights.

NOTE: The ONLY "REAL" difference between an admin account and a non-admin is the ability to use the sudo command. So if non-admins can use the sudo command, they they ARE admins.

You can use the 'su' command to become the admin account, and in this case you do need to know the admin account's password

su admin_account_name

Password: admin_account_password

...now you are the admin, but you do not have any magical privileges yet; you still need to execute sudo to get those...

sudo command needing privileges

Password admin_account_password

I would think that you could use the 'sudo' command in any account as long as you have an Administrator password.

Think about that statement for a moment.

Any authentication action requires two (sometimes more, but we'll keep it simple) elements - a username and a password, and they must match what the authentication system expects.

When you run sudo on a command line, the only user it knows about is the current user you're logged in as.

You're suggesting that if you enter the password of *any* admin user on the system, sudo should somehow realize this and give you admin rights?

So now every time you enter an incorrect (for the current user) password, the auth system has to check every other account on the system just in case you really meant to run as an admin. That might not be a problem on a system with two accounts, but imagine a system connected to a corporate directory server with thousands, or tens of thousands of accounts. You want to check every one of those to see if your password matched? That actually sounds like an awesome brute-force password attack vector to me ("hey, does 'ABCDEFG" match the password for any user on this system? Cool!")

So, no - absolutely sudo wants the password of the current user.

Fortunately it's not as bad as having to log out and re-login with the admin account. You can use 'su' ('switch user') to switch to the admin account, then you can sudo as expected:

localhost:~ user$ su - admin

Password:

localhost:~ admin$ sudo /bin/blah -foo -bar