Difference between revisions of "BXadmin:Accounts"

From CCGB
Jump to: navigation, search
(account creation)
 
(8 intermediate revisions by one other user not shown)
Line 1: Line 1:
 
= request form =
 
= request form =
  
url will be https://admin.bx.psu.edu/requests/account.php
+
url will be https://admin.bx.psu.edu/requests/account/
  
 
Information required:
 
Information required:
Line 7: Line 7:
 
* last name
 
* last name
 
* (optional) penn state access account id (abc123)
 
* (optional) penn state access account id (abc123)
* (optional) requsted username (if blank, will used access account name, or last name if above is blank)
+
* (optional) requsted username (if blank, will use access account name, or last name if above is blank)
 
* status
 
* status
** one of: Faculty, Grad Student, Postdoc, Undergraduate, Staff, Visitor, Other
+
** Faculty, Grad Student, Postdoc, Undergraduate, Staff, Visitor, Other
 
* name/username/email of sponsoring faculty or staff member (departmentNumber)
 
* name/username/email of sponsoring faculty or staff member (departmentNumber)
** provide list of 'groups' to choose from?
+
** provide list of 'groups' to choose from, with 'other' as option
 
* Alternate contact email address
 
* Alternate contact email address
 
** stored in a new bxAlternateEmail attribute in LDAP
 
** stored in a new bxAlternateEmail attribute in LDAP
Line 22: Line 22:
 
User should be made aware of AD-20, AD-23, ADG-1, ADG-2 and agree to comply with these policies.  
 
User should be made aware of AD-20, AD-23, ADG-1, ADG-2 and agree to comply with these policies.  
 
Should include text along the lines of https://www2.ems.psu.edu/computer_support/?q=system/files/UserAcknowledgementForm.pdf and https://www2.ems.psu.edu/computer_support/?q=node/236
 
Should include text along the lines of https://www2.ems.psu.edu/computer_support/?q=system/files/UserAcknowledgementForm.pdf and https://www2.ems.psu.edu/computer_support/?q=node/236
 +
 +
Approval from the sponsor or an individual from the specified lab allowed to authorize new accounts must approve the account before it is created.
  
 
= account entries in ldap =
 
= account entries in ldap =
 +
see [[bxa:LDAP]]
 
<pre>dn: uid=$uid,ou=people,dc=bx,dc=psu,dc=edu
 
<pre>dn: uid=$uid,ou=people,dc=bx,dc=psu,dc=edu
 
objectClass: bxAccount
 
objectClass: bxAccount
Line 45: Line 48:
 
altHomeDirectory: /home/$uid
 
altHomeDirectory: /home/$uid
 
bxAlternateEmail: $alternateEmail
 
bxAlternateEmail: $alternateEmail
 +
bxAccountCreated: [TIMESTAMP]
 
mailLocalAddress: $uid@bx.psu.edu
 
mailLocalAddress: $uid@bx.psu.edu
 
mailRoutingAddress: $alternateEmail</pre>
 
mailRoutingAddress: $alternateEmail</pre>
 +
 +
= account creation =
 +
Scripts are in /afs/bx.psu.edu/admin/bin.  To get the next uid, try:
 +
 +
<nowiki>% sh print_userids.sh | grep 13</nowiki>

Latest revision as of 12:57, 4 January 2012

request form

url will be https://admin.bx.psu.edu/requests/account/

Information required:

  • first name
  • last name
  • (optional) penn state access account id (abc123)
  • (optional) requsted username (if blank, will use access account name, or last name if above is blank)
  • status
    • Faculty, Grad Student, Postdoc, Undergraduate, Staff, Visitor, Other
  • name/username/email of sponsoring faculty or staff member (departmentNumber)
    • provide list of 'groups' to choose from, with 'other' as option
  • Alternate contact email address
    • stored in a new bxAlternateEmail attribute in LDAP
    • used to email new user information
    • mailRoutingAddress will be set to this initially
  • (optional) office address, or building/floor (roomNumber)
  • (optional) phone number
  • (optional) preferred shell

User should be made aware of AD-20, AD-23, ADG-1, ADG-2 and agree to comply with these policies. Should include text along the lines of https://www2.ems.psu.edu/computer_support/?q=system/files/UserAcknowledgementForm.pdf and https://www2.ems.psu.edu/computer_support/?q=node/236

Approval from the sponsor or an individual from the specified lab allowed to authorize new accounts must approve the account before it is created.

account entries in ldap

see bxa:LDAP 

dn: uid=$uid,ou=people,dc=bx,dc=psu,dc=edu
objectClass: bxAccount
objectClass: inetOrgPerson
objectClass: posixAccount
objectClass: shadowAccount
objectClass: inetLocalMailRecipient
uid: $uid
uidNumber: $uidnumber
gidNumber: $gidnumber
loginShell: $shell
homeDirectory: $homedir_base/$uid
cn: $first $last
sn: $last
givenName: $first
displayname: $first $last
mail: $uid@bx.psu.edu
departmentNumber: $affiliation
gecos: $first $last,$office,$phone,,($affiliation)
roomNumber: $office
altHomeDirectory: /home/$uid
bxAlternateEmail: $alternateEmail
bxAccountCreated: [TIMESTAMP]
mailLocalAddress: $uid@bx.psu.edu
mailRoutingAddress: $alternateEmail

account creation

Scripts are in /afs/bx.psu.edu/admin/bin. To get the next uid, try: 

% sh print_userids.sh | grep 13
Retrieved from "http://wiki.bx.psu.edu/index.php?title=BXadmin:Accounts&oldid=1870"