BXadmin:Accounts

From CCGB
Jump to: navigation, search

request form

url will be https://admin.bx.psu.edu/requests/account/

Information required:

  • first name
  • last name
  • (optional) penn state access account id (abc123)
  • (optional) requsted username (if blank, will use access account name, or last name if above is blank)
  • status
    • Faculty, Grad Student, Postdoc, Undergraduate, Staff, Visitor, Other
  • name/username/email of sponsoring faculty or staff member (departmentNumber)
    • provide list of 'groups' to choose from, with 'other' as option
  • Alternate contact email address
    • stored in a new bxAlternateEmail attribute in LDAP
    • used to email new user information
    • mailRoutingAddress will be set to this initially
  • (optional) office address, or building/floor (roomNumber)
  • (optional) phone number
  • (optional) preferred shell

User should be made aware of AD-20, AD-23, ADG-1, ADG-2 and agree to comply with these policies. Should include text along the lines of https://www2.ems.psu.edu/computer_support/?q=system/files/UserAcknowledgementForm.pdf and https://www2.ems.psu.edu/computer_support/?q=node/236

Approval from the sponsor or an individual from the specified lab allowed to authorize new accounts must approve the account before it is created.

account entries in ldap

see bxa:LDAP

dn: uid=$uid,ou=people,dc=bx,dc=psu,dc=edu
objectClass: bxAccount
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: shadowAccount
objectClass: inetLocalMailRecipient
uid: $uid
uidNumber: $uidnumber
gidNumber: $gidnumber
loginShell: $shell
homeDirectory: $homedir_base/$uid
cn: $first $last
sn: $last
givenName: $first
displayname: $first $last
mail: $uid@bx.psu.edu
departmentNumber: $affiliation
gecos: $first $last,$office,$phone,,($affiliation)
roomNumber: $office
altHomeDirectory: /home/$uid
bxAlternateEmail: $alternateEmail
bxAccountCreated: [TIMESTAMP]
mailLocalAddress: $uid@bx.psu.edu
mailRoutingAddress: $alternateEmail

account creation

Scripts are in /afs/bx.psu.edu/admin/bin. To get the next uid, try:

% sh print_userids.sh | grep 13