summaryrefslogtreecommitdiffstats
path: root/zarb-ml/mageia-sysadm/2010-November/000880.html
diff options
context:
space:
mode:
Diffstat (limited to 'zarb-ml/mageia-sysadm/2010-November/000880.html')
-rw-r--r--zarb-ml/mageia-sysadm/2010-November/000880.html127
1 files changed, 127 insertions, 0 deletions
diff --git a/zarb-ml/mageia-sysadm/2010-November/000880.html b/zarb-ml/mageia-sysadm/2010-November/000880.html
new file mode 100644
index 000000000..8da7859f3
--- /dev/null
+++ b/zarb-ml/mageia-sysadm/2010-November/000880.html
@@ -0,0 +1,127 @@
+<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 3.2//EN">
+<HTML>
+ <HEAD>
+ <TITLE> [Mageia-sysadm] pam ldap deployement tonight
+ </TITLE>
+ <LINK REL="Index" HREF="index.html" >
+ <LINK REL="made" HREF="mailto:mageia-sysadm%40mageia.org?Subject=Re%3A%20%5BMageia-sysadm%5D%20pam%20ldap%20deployement%20tonight&In-Reply-To=%3C1290561087.21234.22.camel%40akroma.ephaone.org%3E">
+ <META NAME="robots" CONTENT="index,nofollow">
+ <META http-equiv="Content-Type" content="text/html; charset=us-ascii">
+ <LINK REL="Previous" HREF="000835.html">
+ <LINK REL="Next" HREF="000890.html">
+ </HEAD>
+ <BODY BGCOLOR="#ffffff">
+ <H1>[Mageia-sysadm] pam ldap deployement tonight</H1>
+ <B>Michael Scherer</B>
+ <A HREF="mailto:mageia-sysadm%40mageia.org?Subject=Re%3A%20%5BMageia-sysadm%5D%20pam%20ldap%20deployement%20tonight&In-Reply-To=%3C1290561087.21234.22.camel%40akroma.ephaone.org%3E"
+ TITLE="[Mageia-sysadm] pam ldap deployement tonight">misc at zarb.org
+ </A><BR>
+ <I>Wed Nov 24 02:11:27 CET 2010</I>
+ <P><UL>
+ <LI>Previous message: <A HREF="000835.html">[Mageia-sysadm] pam ldap deployement tonight
+</A></li>
+ <LI>Next message: <A HREF="000890.html">[Mageia-sysadm] pam ldap deployement tonight
+</A></li>
+ <LI> <B>Messages sorted by:</B>
+ <a href="date.html#880">[ date ]</a>
+ <a href="thread.html#880">[ thread ]</a>
+ <a href="subject.html#880">[ subject ]</a>
+ <a href="author.html#880">[ author ]</a>
+ </LI>
+ </UL>
+ <HR>
+<!--beginarticle-->
+<PRE>Le mardi 23 novembre 2010 &#224; 18:22 +0100, Michael Scherer a &#233;crit :
+&gt;<i> Ok so everything is in the title.
+</I>&gt;<i>
+</I>&gt;<i> I will deploy tonight pam_ldap on valstar, likely after midnight. I will
+</I>&gt;<i> warn on irc ( #mageia-sysadm ) before, people should expect potential
+</I>&gt;<i> unavailability of the service.
+</I>
+So, as said, I did it on 1h CEST.
+
+I have removed accounts from /etc/shadow and others files, and I have
+reassigned files to their owner. Everybody will be in mga-users by
+default.
+
+Since some people were not in ldap, I have sent them a mail and take
+care of that.
+
+And some accounts were surprising :
+- mageia
+- pacha
+
+I suspect the first one is the user that replaced the mandrake one, but
+I think we decided to use more descriptive name. SO I think we can
+remove it.
+
+Pacha is a user created the 5 november, and never connected, nor did
+anything. I suspect this was a test user, so I guess we can remove it
+too ?
+
+I have also promoted olivier burger as commiter, as asked on #mageia-web
+today. I will see with him how it goes for our first real pure ldap
+user, who is not admin ( I think I may have did something wrong in
+system-auth with required/sufficient ).
+
+Next thing to do :
+- fix stuff not working ( just in case )
+- reassign svn repository to the proper group ( mga-commiters ).
+ - use svn::repository to handle them
+
+- add a secondary ldap on krampouizh
+- make sure pam_ldap use the 2 ldap
+
+&gt;<i> Please be sure that your account in catdap is correct. Please also make
+</I>&gt;<i> sure that the ssh keys is ok. For now, we do not have decided to roll
+</I>&gt;<i> out the ssh key deployment from ldap ( ie, this requires some test ) but
+</I>&gt;<i> since buchan has enabled it in catdap, please add your key there ( and
+</I>&gt;<i> send us bugs and feedback ).
+</I>
+I have tested this too in the evening, and basically, after fighting
+against puppet parser, I think I managed to make him do what I wanted. I
+have checked, this will not break the ssh root access.
+
+Next steps :
+- add our ssh keys in catdap ( since buchan added the support for it )
+- check that the key is properly extracted on a testvm and that
+everything still work
+- migrate on this scheme.
+
+
+--
+Michael Scherer
+
+</PRE>
+
+
+
+
+
+
+
+
+
+
+
+
+<!--endarticle-->
+ <HR>
+ <P><UL>
+ <!--threads-->
+ <LI>Previous message: <A HREF="000835.html">[Mageia-sysadm] pam ldap deployement tonight
+</A></li>
+ <LI>Next message: <A HREF="000890.html">[Mageia-sysadm] pam ldap deployement tonight
+</A></li>
+ <LI> <B>Messages sorted by:</B>
+ <a href="date.html#880">[ date ]</a>
+ <a href="thread.html#880">[ thread ]</a>
+ <a href="subject.html#880">[ subject ]</a>
+ <a href="author.html#880">[ author ]</a>
+ </LI>
+ </UL>
+
+<hr>
+<a href="https://www.mageia.org/mailman/listinfo/mageia-sysadm">More information about the Mageia-sysadm
+mailing list</a><br>
+</body></html>
generated by cgit v1.2.1 (git 2.21.0) at 2025-04-09 09:01:00 +0000