Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

make sure lib-aspacesftp user does not have the suffix #4879

Open
kayiwa opened this issue Apr 30, 2024 · 5 comments · May be fixed by #4933
Open

make sure lib-aspacesftp user does not have the suffix #4879

kayiwa opened this issue Apr 30, 2024 · 5 comments · May be fixed by #4933

Comments

@kayiwa
Copy link
Member

kayiwa commented Apr 30, 2024
edited
Loading

we have manually chmod of lib-aspacesftp to own the /alma/aspace directory. Remove the suffix on the role
@regineheberlein
Copy link
Contributor

related to pulibrary/aspace_helpers#540

@regineheberlein
Copy link
Contributor

Could you do it for lib-sftp-prod 1 and also for lib-sftp-staging1 please? (pulibrary/aspace_helpers#546)

@regineheberlein regineheberlein mentioned this issue May 9, 2024
Closed
@acozine acozine linked a pull request May 13, 2024 that will close this issue
Draft
@acozine
Copy link
Contributor

acozine commented May 13, 2024

More detail in this ticket would help a lot. What prompted this change? How was it implemented in production? Is the new user with no suffix still an AD user, or a local user? Did we choose the group name and create the group manually, or was that created some other way? It's difficult to understand what happened here, and that makes it difficult to be sure that changes to the automation will recreate a working system correctly.

@kayiwa
Copy link
Member Author

kayiwa commented May 13, 2024

Active Directory stopped working properly on production. (Was working in Staging) using
getent passwd lib-aspacesftp (on staging) we manually added a posix user on prod (sans suffix)
We modified the user with
groupadd -g 123456789 pul_g
useradd -o -u 123456789 -g 123456789 -m lib-aspacesftp (the -o flag allows for two UIDs to exist)
passwd lib-aspacesftp (same password in the vault and lastpass)
chown -R lib-aspacesftp /alma/aspace

@kayiwa kayiwa mentioned this issue May 13, 2024
Open
6 tasks
@kayiwa
Copy link
Member Author

kayiwa commented Jun 16, 2024

related to #4938

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

use local user instead of Active Directory user for aspace pulibrary/princeton_ansible
4 participants
@kayiwa @acozine @regineheberlein @Beck-Davis