This shows you the differences between two versions of the page.
Both sides previous revision Previous revision Next revision | Previous revision Next revision Both sides next revision | ||
build:users [2008/01/31 15:52] 4.245.79.82 |
build:users [2008/03/11 12:51] 24.107.98.225 |
||
---|---|---|---|
Line 1: | Line 1: | ||
====== Users ====== | ====== Users ====== | ||
- | |||
- | |||
- | |||
- | |||
- | |||
Line 13: | Line 8: | ||
For ''useradd'', a command similar to the following should be used: | For ''useradd'', a command similar to the following should be used: | ||
<code rootshell> | <code rootshell> | ||
- | useradd -m -u 10999 -g useracct -s /bin/mysh -c 'John Doe' johndoe | + | useradd -m -u 10999 -g useracct -G bronze -s /bin/bash -c 'John Doe' johndoe |
</code> | </code> | ||
Line 44: | Line 39: | ||
In addition, we've defined these groups (mainly grabbed from Michelob's /etc/group file): | In addition, we've defined these groups (mainly grabbed from Michelob's /etc/group file): | ||
- | ^Group^Function| | + | ^Group^GID^Function| |
- | |wheel|We've got it set up so these folks can sudo without a root password.| | + | |wheel||We've got it set up so these folks can sudo without a root password.| |
- | |users|Default group that all users should belong to.| | + | |users||Default group that all users should belong to.| |
- | |newslett|Not sure if it's used; only member is editor.| | + | |newslett||Not sure if it's used; only member is editor.| |
- | |steercom|Ad-hoc list of Steering Committee attendees, who can access steercom directory on Michelob.| | + | |steercom||Ad-hoc list of Steering Committee attendees, who can access steercom directory on Michelob.| |
- | |webhead|Users who have write access to our web sites.| | + | |webhead||Users who have write access to our web sites.| |
- | |majordom|Used for mailing list management; ''lists'' account is included.| | + | |majordom||Used for mailing list management; ''lists'' account is included.| |
+ | |useracct|11025|Accounts for real live users, as opposed to system accounts, shared accounts, etc.| | ||
+ | |platinum|11111|Members who have paid for the Platinum membership level.| | ||
+ | |gold|11112|Members who have paid for the Gold membership level.| | ||
+ | |silver|11113|Members who have paid for the Silver membership level.| | ||
+ | |bronze|11114|Members who have paid for the Bronze membership level.| | ||
TODO: Create groups for: | TODO: Create groups for: | ||
- | * a group for each paid account level (eg. gold/silver) | ||
* users who have paid up for the current year (paid2006, etc.) | * users who have paid up for the current year (paid2006, etc.) | ||
+ | * Since we're now renewing memberships year-round, this no longer makes sense. | ||
+ | * We should probably have accounts expire when the renewal is due. | ||
+ | * We should have the passwords expire every 90 days, at the least. | ||
+ | * Although we need to allow users to change their passwords on Bud before we do that. | ||
* voting members, as defined by our articles of incorporation / by-laws | * voting members, as defined by our articles of incorporation / by-laws | ||
+ | * Doesn't make sense, since that's not used for anything except voting, and changes every year. | ||
* officers | * officers | ||
* board members | * board members | ||
Line 63: | Line 67: | ||
As with users, there are 2 ways to add a group: ''groupadd'', and ''addgroup''. | As with users, there are 2 ways to add a group: ''groupadd'', and ''addgroup''. | ||
+ | |||
+ | <code rootshell> | ||
+ | groupadd -g gid groupname | ||
+ | </code> | ||
TODO: Adding users to groups. | TODO: Adding users to groups. | ||
Line 69: | Line 77: | ||
TODO: Adding sudoers. What groups should administrators be in? So far, it looks like ''wheel'' will suffice. | TODO: Adding sudoers. What groups should administrators be in? So far, it looks like ''wheel'' will suffice. | ||
- | |||
===== Using a User Account ===== | ===== Using a User Account ===== | ||
Line 75: | Line 82: | ||
TODO: Add info about how they can change their settings. Especially things like chfn, chsh, .forward, .profile, .bashrc, passwd, etc. | TODO: Add info about how they can change their settings. Especially things like chfn, chsh, .forward, .profile, .bashrc, passwd, etc. | ||
- | This should go on a a user documentation page, not a "build" page. | + | This should go on a [[../server_access|user documentation page]], not a "build" page. |
===== Migrating User Accounts ===== | ===== Migrating User Accounts ===== |