Research Administration Tasks: Difference between revisions
Jump to navigation
Jump to search
Line 15: | Line 15: | ||
# DEBUG=1 diradm userdel $username | # DEBUG=1 diradm userdel $username | ||
* Keeping the user on our [http://bismarck.iat.sfu.ca/mailman/admin/research/ Research Mailing List] is probably a good idea. | * Keeping the user on our [http://bismarck.iat.sfu.ca/mailman/admin/research/ Research Mailing List] is probably a good idea. | ||
* If you delete a user, you MUST disallow diradm from ever using that UIDNumber again. To do so, go to each machine with diradm and edit the diradm.conf file so that UIDNUMBERMIN to equal the same number as the highest UIDNumber currently being used. This is important! | * If you delete a user, you MUST disallow diradm from ever using that UIDNumber again. To do so, go to each machine with diradm and edit the diradm.conf file so that UIDNUMBERMIN to equal the same number as the highest UIDNumber currently being used. (At least one higher than the user you deleted) This is important! | ||
== Changing a Users Password == | == Changing a Users Password == |
Revision as of 18:44, 1 November 2006
Adding Users
- As root on yamato:
# DEBUG=1 /usr/local/sbin/diradm.superadduser '$username' '$email' '$fullname'
- Note that a file named '$username' is created in your current directory with the template filled out for mailing (the same file is displayed onscreen).
- The password you are prompted for at the end is for hood.
- Add the newly-created user to our Research Mailing List.
Deleting Users
Make sure there are no sym-links pointing to important stuff!!
# find -P /home/users/$username -noleaf -type l
- As root on yamato:
# DEBUG=1 diradm userdel -r $username
- As root on hood:
# DEBUG=1 diradm userdel $username
- Keeping the user on our Research Mailing List is probably a good idea.
- If you delete a user, you MUST disallow diradm from ever using that UIDNumber again. To do so, go to each machine with diradm and edit the diradm.conf file so that UIDNUMBERMIN to equal the same number as the highest UIDNumber currently being used. (At least one higher than the user you deleted) This is important!
Changing a Users Password
This method does not require the old password.
- As root on hood:
# ldappass $username
Adding Users to a Group
Adding or removing from a group. Uses the same syntax as gpasswd(8).
- As root on hood:
# diradm gpasswd (-a|-d) $username $group # diradm gpasswd -a mdeepwel pond
Adding Groups
Adding groups takes the same syntax as groupadd(8).
- As root on hood:
# diradm groupadd $groupname
Adding Projects
- As root on hood:
# diradm amadd -O $mapbase $key $src # diradm amadd -O home.projects meditation 209.87.56.240:/export/projects/0/m/meditation
- '-O' means the default mount options for automount.
- As root on yamato:
- Make the $src directory. mkdir -p $src
- Set ownership. chgrp -R $group $src
- Set permissions. chmod 2771 $src
- If web content is being served: mkdir -p $src/htdocs ; chmod 2775 $src/htdocs
Adding CVS Repositories
Replace $foobar with the name of the repository.
- As root on hood:
# diradm amadd -O auto.cvs $foobar 209.87.56.240:/export/cvs/$foobar
- As root on yamato:
# cvs -d /export/cvs/$foobar init # chmod -R 2770 /export/cvs/$foobar
- If this repository is for a group, (assuming there's a previously created group called $foobar):
# chgrp -R $foobar_group /export/cvs/$foobar
- If this repository is for a single user:
# chown -R $user /export/cvs/$foobar
- Group name and cvs repository name don't have to match.
- To access CVS repo, use CVS_RSH="ssh" with URL being :ext:$user@cvs.iat.sfu.ca:/var/cvsroot/$foobar
- Users must be in group cvs in addition to $foobar to access the repository!
Adding SVN Repositories
Replace $foobar with the name of the repository.
- As root on hood:
# diradm amadd -O auto.svn $foobar 209.87.56.240:/export/svn/$foobar
- As root on yamato, run (assuming there's a previously created group called $foobar:
# mkdir /export/svn/$foobar
- As root on nelson:
# svnadmin create /var/svnroot/$foobar --fs-type fsfs
- As root on yamato:
# chmod -R 2770 /export/svn/$foobar # chgrp -R foobar /export/svn/$foobar
- Repo URL is svn+ssh://$user@cvs.iat.sfu.ca/var/svnroot/$foobar
- Users must be in the cvs group in addition to $foobar group to access the repository!
Adding Computers to the Domain
- As root on hood:
# diradm smbhostadd sr-#####
- refer to Workstation_Naming_Convention
General User Management
- diradm offers almost all regular POSIX commands, sometimes with a few extra frills. The only commands NOT completely implemented are gpasswd and passwd.
- Welcoming new users; email template
- This is in the diradm.superadduser script, as it fills out the template.
To: $fullname <$email> Subject: Research account created - $newuser Hello $fullname Your research account has been created. Username: $newuser Password: $newpass Please visit http://research.iat.sfu.ca/network/changepassword.php to change your password when you receive this email. For support with the research network, please email: help@research.iat.sfu.ca And include a good description of the entire problem and a suitable subject line. Please note that this username/password pair is only valid for the SFU Surrey Research Network, and is NOT tied into the main SFU authentication systems.