Something is missing in your sudo rules. In your sudo -l display, I'm not seeing the run-as ID, which would have to contain "root" in order to allow you to do what you're trying to do.
I'm having trouble figuring out why you'd want to use sudo and su at the same time, since one replaces the other. You could issue "sudo -u MrGreat bash" and accomplish the same thing. This way you're not granting any users authority to use root on anything. You just make the sudo rule like so:
Code:
%groupname ALL = (MrGreat) ALL
And then add all your users who need MrGreat authority to said group.