Differences between revisions 8 and 9
Deletions are marked like this. Additions are marked like this.
Line 5: Line 5:
{{{ /etc/heimdal-kdc/kadmind.acl }}}
 1. Open {{{ /etc/heimdal-kdc/kadmind.acl }}}
 1. Add "{{{you/admin@CLUB.CC.CMU.EDU all *@CLUB.CC.CMU.EDU}}}" and "{{{you/admin@CLUB.CC.CMU.EDU all */*@CLUB.CC.CMU.EDU}}}" to the file above the line for {{{contribkey@CLUB.CC.CMU.EDU}}}

Adding a new admin

On all KDCs:

  1. Open  /etc/heimdal-kdc/kadmind.acl 

  2. Add "you/admin@CLUB.CC.CMU.EDU all *@CLUB.CC.CMU.EDU" and "you/admin@CLUB.CC.CMU.EDU all */*@CLUB.CC.CMU.EDU" to the file above the line for contribkey@CLUB.CC.CMU.EDU

On all KDCs and fileservers (make sure you modify the AFS server/UserList on all of them!): 

/etc/openafs/server/UserList
pts cu user.admin 
pts adduser user.admin system:administrators

Machines

KDCs: barium, sodium, potassium

AFS: vos listaddrs and go down the list to see which ones are current, and "gafs" as well (though this one isn't so critical, as it won't cause the new account script to barf if you forget :))

Services/Club Kerberos (last edited 2014-03-07 04:08:26 by kbare@CLUB.CC.CMU.EDU)