|
|
| (37 intermediate revisions by 6 users not shown) |
| Line 1: |
Line 1: |
| − | == The LDAP directory structure ==
| + | This page has moved to [https://wiki.nikhef.nl/nikhef/ctb/NDPF:Creating_Pool_Accounts_With_LDAP the internal CTB Wiki]. |
| − | The list of valid users of the NDPF is kept in a central LDAP directory, currently hosted on <tt>trog.nikhef.nl</tt>. This directory contains both the "local" users as well as all poolaccounts and all automount map entries. The structure of the directory is:
| |
| − | | |
| − | + dc=farmnet,dc=nikhef,dc=nl
| |
| − | |
| |
| − | + ou=Managers
| |
| − | + ou=LocalGroups (<i>contains all groups!</i>)
| |
| − | + ou=LocalUsers
| |
| − | + ou=Poolaccounts
| |
| − | + ou=automount
| |
| − | |
| |
| − | + ou=auto.home
| |
| − | + ou=lcgprod
| |
| − | |
| |
| − | + ou=auto.sedata
| |
| − | + ou=auto.share
| |
| − | + ou=auto.stage
| |
| − | + ou=auto.sedata2
| |
| − | | |
| − | The <tt>ou=Poolaccounts</tt> entry contains the list of all pool accounts, without any further hierarchy. Each account is named by its <tt>uid</tt>, and is of objectClass "posixAccount". For each account named here, there should be a corresponsing entry in the <tt>ou=pool,ou=auto.home,ou=automount</tt> branch of the tree as well (of objectClass "automount").
| |
| − | | |
| − | | |
| − | == Creating accounts for a new VO ==
| |
| − | | |
| − | To use the scripts, login on the fileserver "hooimijt.nikhef.nl", and make sure that <tt>/export/perm/adm/bin</tt> is in your path (it contains all the relevant scripts), or go there.
| |
| − | | |
| − | You need to:
| |
| − | | |
| − | 1. add the accounts to the LDAP directory
| |
| − | 2. create the homedirectories for these users on hooimijt
| |
| − | 3. add the inodes to the gridmapdir
| |
| − | | |
| − | (and of course add the VO itself to the proper Quattor profiles for the selected facilities, but this is outside the scope of this page).
| |
Latest revision as of 12:54, 4 December 2017
