This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision | ||
cluster:157 [2017/04/06 18:35] hmeij07 |
cluster:157 [2017/04/06 19:31] (current) hmeij07 |
||
---|---|---|---|
Line 38: | Line 38: | ||
* useradd -u 15001 -g 15001 weshmeij | * useradd -u 15001 -g 15001 weshmeij | ||
* echo `date | md5sum | awk ' | * echo `date | md5sum | awk ' | ||
- | * su - weshmeij -c " | + | * su - weshmeij -c " |
* mv / | * mv / | ||
* chown root:root / | * chown root:root / | ||
Line 44: | Line 44: | ||
* CollegeA user hmeij saves private key to $HOME/ | * CollegeA user hmeij saves private key to $HOME/ | ||
* script finishes; rm -f / | * script finishes; rm -f / | ||
+ | * that night college[A|B|C] root retrieves all lines in the range 15001-30000 | ||
+ | * makes home dirs if they do not exist (parse lines build useradd, or via pam.d/ | ||
+ | * download public keys, updates in / | ||
+ | * replaces local passwd/ | ||
+ | * user hmeij@wes: ssh weshmeij@openhpc.lafayette.edu -i / | ||
- | Hmm, this requires that at CollegeA user hmeij can switch to weshmeij credentials before connecting to CollegeB (echo "$unm $localhost=/ | + | That would work. Nobody knows the passwords for these guest accounts. |
- | Ahh, since | ||
**Kerberos & AD** | **Kerberos & AD** |