Grupos e usuários
- Alterar senha
- Checagens

Grupos e usuários

# kinit admin
Password for admin@JUNTOTELECOM.COM.BR:

# ipa group-add --desc='Gerente de Redes' gerente --nonposix
# ipa group-add --desc='Analista de Redes' analista --nonposix
# ipa group-add wikiadm --desc="WIKI Administrator" --nonposix
# ipa group-add wikimgm --desc="Management WIKI" --nonposix
# ipa group-add radiusgpadm --desc="RADIUS group administrator" --nonposix
# ipa group-add radiusgpmgm --desc="RADIUS group Management" --nonposix

# yes "senha" | ipa user-add gean.martins --first=Gean --last=Martins --cn="Gean Martins" --gecos="Gean Martins" --title="Analista de Redes" --city="Marabá" --state="Pará" --email=gean.martins@juntotelecom.com.br --password

# yes 'senha' | ipa user-add wairisson.gomes --first=Wairisson --last=Gomes --cn="Wairisson Gomes" --gecos="Wairisson Gomes" --title="Gerente de Redes" --city='São Paulo' --state='São Paulo' --email=wairisson.gomes@juntotelecom.com.br --password

# yes "senha" | ipa user-mod wairisson.gomes --password-expiration="2050-01-01Z" --password

# kinit gean.martins
Password for gean.martins@JUNTOTELECOM.COM.BR:
Password expired.  You must change it now.
Enter new password:
Enter it again:

# klist
Ticket cache: KCM:0:36811
Default principal: gean.martins@JUNTOTELECOM.COM.BR
 
Valid starting     Expires            Service principal
04/13/22 10:57:38  04/14/22 10:49:45  krbtgt/JUNTOTELECOM.COM.BR@JUNTOTELECOM.COM.BR

# ipa group-add-member analista --users=gean.martins 
# ipa group-add-member gerente --users=wairisson.gomes

# ipa group-add-member wikiadm --users=gean.martins
# ipa group-add-member wikimgm --users=wairisson.gomes

# ipa group-add-member radiusgpadm --users=wairisson.gomes 
# ipa group-add-member radiusgpmgm --users=gean.martins

Alterar senha

# yes 'senha' | ipa user-mod gean.martins --password

Checagens

# ipa user-find wairisson.gomes --all
# ipa group-find --private wairisson.gomes
# ipa user-find wairisson.gomes --raw
# ipa group-show analista
# ipa group-show gerencia
# ipa group-find --posix
# ipa group-find --nonposix
# ipa group-find --private

# ipa user-show wairisson.gomes --all --raw
  dn: uid=wairisson.gomes,cn=users,cn=accounts,dc=juntotelecom,dc=com,dc=br
  uid: wairisson.gomes
  givenname: Wairisson
  sn: Gomes
  cn: Wairisson Gomes
  initials: WG
  homedirectory: /home/wairisson.gomes
  gecos: Wairisson Gomes
  loginshell: /usr/bin/false
  krbcanonicalname: wairisson.gomes@JUNTOTELECOM.COM.BR
  krbprincipalname: wairisson.gomes@JUNTOTELECOM.COM.BR
  mail: wairisson.gomes@juntotelecom.com.br
  uidnumber: 187600006
  gidnumber: 187600006
  l: São Paulo
  st: São Paulo
  title: Gerente de Redes
  nsaccountlock: FALSE
  has_password: TRUE
  has_keytab: TRUE
  displayName: Wairisson Gomes
  ipaNTSecurityIdentifier: S-1-5-21-2731924211-1883941829-2112701219-1006
  ipaUniqueID: 1b9329c4-bb28-11ec-a530-000c29ad9330
  krbLastPwdChange: 20220413130003Z
  krbPasswordExpiration: 20220712130003Z
  memberof: cn=ipausers,cn=groups,cn=accounts,dc=juntotelecom,dc=com,dc=br
  memberof: cn=radiusgpadm,cn=groups,cn=accounts,dc=juntotelecom,dc=com,dc=br
  memberof: cn=gerente,cn=groups,cn=accounts,dc=juntotelecom,dc=com,dc=br
  memberof: cn=wikimgm,cn=groups,cn=accounts,dc=juntotelecom,dc=com,dc=br
  objectClass: top
  objectClass: person
  objectClass: organizationalperson
  objectClass: inetorgperson
  objectClass: inetuser
  objectClass: posixaccount
  objectClass: krbprincipalaux
  objectClass: krbticketpolicyaux
  objectClass: ipaobject
  objectClass: ipasshuser
  objectClass: ipaSshGroupOfPubKeys
  objectClass: mepOriginEntry
  objectClass: ipantuserattrs

Table of Contents

Grupos e usuários

Alterar senha

Checagens