welcome: please sign in

Diff for "UserManagement"

Differences between revisions 4 and 12 (spanning 8 versions)
Revision 4 as of 2008-07-07 04:27:55
Size: 963
Editor: localhost
Comment: converted to 1.6 markup
Revision 12 as of 2013-01-11 08:44:18
Size: 554
Editor: ClintonEbadi
Comment:
Deletions are marked like this. Additions are marked like this.
Line 1: Line 1:
We have two standard Debian GNU scripts to perform user management. We use a few custom scripts for managing users.
Line 3: Line 3:
== adduser ==
First, adduser, does the usual job, and executes /usr/local/sbin/adduser.local.
There we log new account creation to our special log file, and set up
group quotas. We can't set up quotas by defining the appropriate variable
in /etc/adduser.conf because that works for user quotas only, and not
group quotas. What a shame.
See AuthenticationScheme for background information.
Line 10: Line 5:
== deluser ==
The tool to delete users is deluser. What's wrong with deluser is that it
can remove user's files at deletion time, and it can also back them up
before that. You can specify backup directory, but it goes tar-gzipping
the files, which can take a long time. I need to hack the source to allow
files to just be moved to the backup directory. This way, if you keep
backup dir on the same partition as /home, moving user's files is
instant and doesn't grow linearly with user directory size.
 * `create-user $USER` creates a new "real" user (human being)
 * `create-service-user $USER` creates a new shared service user. Also see PrincipalsForNonHumans
 * `freeze` for freezing members that will have a negative balance soon (see MemberFreezing)
 * `destroy-user $USER` deactivates the user account, saving their volume for a later purge (or reactivation if they rejoin quickly)
Line 19: Line 11:
CategorySystemAdministration CategorySystemAdministration CategoryNeedsWork

We use a few custom scripts for managing users.

See AuthenticationScheme for background information.

  • create-user $USER creates a new "real" user (human being)

  • create-service-user $USER creates a new shared service user. Also see PrincipalsForNonHumans

  • freeze for freezing members that will have a negative balance soon (see MemberFreezing)

  • destroy-user $USER deactivates the user account, saving their volume for a later purge (or reactivation if they rejoin quickly)


CategorySystemAdministration CategoryNeedsWork

UserManagement (last edited 2013-01-11 08:44:18 by ClintonEbadi)