Difference between revisions of "Creating Pool Accounts With LDAP"

From PDP/Grid Wiki
Jump to navigationJump to search
(Creating Pool Accounts in the NDPF LDAP user directory)
 
m
Line 1: Line 1:
 
 
== Headline text ==
 
== Headline text ==
 
The list of valid users of the NDPF is kept in a central LDAP directory, currently hosted on <tt>trog.nikhef.nl</tt>. This directory contains both the "local" users as well as all poolaccounts and all automount map entries. The structure of the directory is:
 
The list of valid users of the NDPF is kept in a central LDAP directory, currently hosted on <tt>trog.nikhef.nl</tt>. This directory contains both the "local" users as well as all poolaccounts and all automount map entries. The structure of the directory is:
Line 18: Line 17:
 
         + ou=auto.stage
 
         + ou=auto.stage
 
         + ou=auto.sedata2
 
         + ou=auto.sedata2
 +
 +
The <tt>ou=Poolaccounts</tt> entry contains the list of all pool accounts, without any further hierarchy. Each account is named by its <tt>uid</tt>, and is of objectClass "posixAccount". For each account named here, there should be a corresponsing entry in the <tt>ou=pool,ou=auto.home,ou=automount</tt> branch of the tree as well (of objectClass "automount").
 +
 +
 +
== Headline text ==
 +
Creating a new VO
 +
 +
To use the scripts, login on the fileserver "hooimijt.nikhef.nl", and make sure that <tt>/export/perm/adm/bin</tt> is in your path (it contains all the relevant scripts), or go there.

Revision as of 15:42, 18 August 2005

Headline text

The list of valid users of the NDPF is kept in a central LDAP directory, currently hosted on trog.nikhef.nl. This directory contains both the "local" users as well as all poolaccounts and all automount map entries. The structure of the directory is:

 + dc=farmnet,dc=nikhef,dc=nl
   |
   + ou=Managers
   + ou=LocalGroups (contains all groups!)
   + ou=LocalUsers
   + ou=Poolaccounts
   + ou=automount
     |
     + ou=auto.home
     + ou=lcgprod
       |
       + ou=auto.sedata
       + ou=auto.share
       + ou=auto.stage
       + ou=auto.sedata2

The ou=Poolaccounts entry contains the list of all pool accounts, without any further hierarchy. Each account is named by its uid, and is of objectClass "posixAccount". For each account named here, there should be a corresponsing entry in the ou=pool,ou=auto.home,ou=automount branch of the tree as well (of objectClass "automount").


Headline text

Creating a new VO

To use the scripts, login on the fileserver "hooimijt.nikhef.nl", and make sure that /export/perm/adm/bin is in your path (it contains all the relevant scripts), or go there.