groups_and_users
This is an old revision of the document!
Table of Contents
Grupos e usuários
# kinit admin Password for admin@JUNTOTELECOM.COM.BR:
# ipa group-add --desc='Gerente de Redes' gerente --nonposix # ipa group-add --desc='Analista de Redes' analista --nonposix # ipa group-add wikiadm --desc="WIKI Administrator" --nonposix # ipa group-add wikimgm --desc="Management WIKI" --nonposix # ipa group-add radiusgpadm --desc="RADIUS group administrator" --nonposix # ipa group-add radiusgpmgm --desc="RADIUS group Management" --nonposix
# yes "senha" | ipa user-add gean.martins --first=Gean --last=Martins --cn="Gean Martins" --gecos="Gean Martins" --title="Analista de Redes" --city="Marabá" --state="Pará" --email=gean.martins@juntotelecom.com.br --password
# yes 'senha' | ipa user-add wairisson.gomes --first=Wairisson --last=Gomes --cn="Wairisson Gomes" --gecos="Wairisson Gomes" --title="Gerente de Redes" --city='São Paulo' --state='São Paulo' --email=wairisson.gomes@juntotelecom.com.br --password
# yes "senha" | ipa user-mod wairisson.gomes --password-expiration="2050-01-01Z" --password
# kinit gean.martins Password for gean.martins@JUNTOTELECOM.COM.BR: Password expired. You must change it now. Enter new password: Enter it again:
# klist Ticket cache: KCM:0:36811 Default principal: gean.martins@JUNTOTELECOM.COM.BR Valid starting Expires Service principal 04/13/22 10:57:38 04/14/22 10:49:45 krbtgt/JUNTOTELECOM.COM.BR@JUNTOTELECOM.COM.BR
# ipa group-add-member analista --users=gean.martins # ipa group-add-member gerente --users=wairisson.gomes
# ipa group-add-member wikiadm --users=gean.martins # ipa group-add-member wikimgm --users=wairisson.gomes
# ipa group-add-member radiusgpadm --users=wairisson.gomes # ipa group-add-member radiusgpmgm --users=gean.martins
Alterar senha
# yes 'senha' | ipa user-mod gean.martins --password
Checagens
# ipa user-find wairisson.gomes --all # ipa group-find --private wairisson.gomes # ipa user-find wairisson.gomes --raw # ipa group-show analista # ipa group-show gerencia # ipa group-find --posix # ipa group-find --nonposix # ipa group-find --private
# ipa user-show wairisson.gomes --all --raw dn: uid=wairisson.gomes,cn=users,cn=accounts,dc=juntotelecom,dc=com,dc=br uid: wairisson.gomes givenname: Wairisson sn: Gomes cn: Wairisson Gomes initials: WG homedirectory: /home/wairisson.gomes gecos: Wairisson Gomes loginshell: /usr/bin/false krbcanonicalname: wairisson.gomes@JUNTOTELECOM.COM.BR krbprincipalname: wairisson.gomes@JUNTOTELECOM.COM.BR mail: wairisson.gomes@juntotelecom.com.br uidnumber: 187600006 gidnumber: 187600006 l: São Paulo st: São Paulo title: Gerente de Redes nsaccountlock: FALSE has_password: TRUE has_keytab: TRUE displayName: Wairisson Gomes ipaNTSecurityIdentifier: S-1-5-21-2731924211-1883941829-2112701219-1006 ipaUniqueID: 1b9329c4-bb28-11ec-a530-000c29ad9330 krbLastPwdChange: 20220413130003Z krbPasswordExpiration: 20220712130003Z memberof: cn=ipausers,cn=groups,cn=accounts,dc=juntotelecom,dc=com,dc=br memberof: cn=radiusgpadm,cn=groups,cn=accounts,dc=juntotelecom,dc=com,dc=br memberof: cn=gerente,cn=groups,cn=accounts,dc=juntotelecom,dc=com,dc=br memberof: cn=wikimgm,cn=groups,cn=accounts,dc=juntotelecom,dc=com,dc=br objectClass: top objectClass: person objectClass: organizationalperson objectClass: inetorgperson objectClass: inetuser objectClass: posixaccount objectClass: krbprincipalaux objectClass: krbticketpolicyaux objectClass: ipaobject objectClass: ipasshuser objectClass: ipaSshGroupOfPubKeys objectClass: mepOriginEntry objectClass: ipantuserattrs
groups_and_users.1753560543.txt.gz · Last modified: by wikiadm