User Tools

Site Tools


account

This is an old revision of the document!


User Account Handling

As there is more than one server that will make up the Wormnet universe, in addition to a few xDSL joined NASes and systems, we need to roll out some kind of central user management database. Naturally we opted for LDAP.

The packages required to be installed to do this are:

User Management

Modifying an Account

Adding SSH keys, etc. can be done without root access. Do:-

# Set $EDITOR if vi isn't your thing
$ ldapvi --discover -D uid=${USER},ou=Users,dc=wormnet,dc=eu -h ldapi:/// uid=${USER}

… and add/remove sshPublicKey lines to your heart's delight.

Creating an Account

root@marmot:~# ldapaddgroup fred
root@marmot:~# ldapadduser fred fred
Successfully added user fred to LDAP
Successfully set password for user fred

root@marmot:~# passwd fred
LDAP administrator password:
New password:
Retype new password:
passwd: password updated successfully

root@marmot:~# ldapvi --discover -D cn=admin,dc=wormnet,dc=eu -h ldapi:/// uid=fred
objectClass: ldapPublicKey
sshPublicKey: ssh-rsa AAAB3...aLOOw== wibble
sshPublicKey: ssh-rsa AAAB3...KD0pw== fred@foobar

root@marmot:~# lvcreate -L 256M -n home-fred lvm-marmot
root@marmot:~# mkfs.ext4 -L home-fred /dev/lvm-marmot/home-fred
root@marmot:~# vi /etc/fstab
LABEL=home-fred         /home/fred      auto    relatime,nodev,nosuid,noexec             0  2
root@marmot:~# mkdir /home/fred
root@marmot:~# mount /home/fred
root@marmot:~# chown fred:fred /home/fred
root@marmot:~# tar cC /etc/skel --owner=fred --group=fred . | tar xC /home/fred
root@marmot:~# chmod -R og-r-w-x /home/fred

root@marmot:~# ldapvi --discover -D cn=admin,dc=wormnet,dc=eu -h ldapi:/// cn=wormnet-shell
memberUid: fred
account.1319823323.txt.gz · Last modified: 2011/10/28 17:35 by lentinj