Next question. I want to automate user administration. The whole 'useradmin useradd' thing with its interactive interface and live password addition (who the heck only lets root set a user's pasword?) is probably not going to work with our 500+ filers. 500xNumberOfAdmins. Yeah, right.
The docs point to fairly standard /etc/[passwd,shadow,group] files, but having added a user, I still don't see them on my box. Has anyone automated user management?
-MikeC
_____
From: Michael Christian Sent: Friday, October 29, 2004 9:08 PM To: 'Potakamuri, Sreenivasa'; Thorsten.Lemke@computacenter.com; bparent@calvin.ucsd.edu Cc: toasters@mathworks.com Subject: RE: ssh scripts
Nice, that did it. Thanks. User-level auditing will be a godsend.
-MikeC
_____
From: Potakamuri, Sreenivasa [mailto:Sreenivasa.Potakamuri@netapp.com] Sent: Thursday, October 28, 2004 10:53 PM To: Michael Christian; Thorsten.Lemke@computacenter.com; bparent@calvin.ucsd.edu Cc: toasters@mathworks.com Subject: RE: ssh scripts
This problem has been fixed in 6.4.5, 6.5.1 and above.
Bug number for this problem is 90495.
Regards,
Sreeni
Network Appliance
-----Original Message----- From: Michael Christian [mailto:mchristi@yahoo-inc.com] Sent: Thu 10/28/2004 11:07 AM To: Thorsten.Lemke@computacenter.com; bparent@calvin.ucsd.edu Cc: toasters@mathworks.com Subject: RE: ssh scripts
On a similar note, I've been trying to get user-level auditing working using ssh. When you telnet in, it logs actions under your userid, but when you ssh in, it logs everything as root. (Presumably because sshd is running as root?)
Has anyone else had this problem, or know of a workaround?
This is 6.5X18
-Mike ***************************************
you have to know that useradmin useradd userdel and so have nothing to do with /etc/passwd
userad,in add been historically added to support telnet administration for different <admin user> thus being able to know wo do what (administrativelly speaking)
next, this useradmin function was extended to support the user creation able to connect bu CIFS on the netapp (it creates local account) (in the past, you have to edit /etc/passwd and explicit a mapping with /etc/usermap.cfg...)
in either case, this command doesn't modify the /etc/passwd file
it is true that this command is not ... um, very coherent i think it had been integrated in the netapp to allow function that were in need...
i had the same question from a customer : is it possible to change the passwd for a user created with useradmin the answer is no : you have to delete and recreate the user
bye
Michael Christian wrote:
Next question. I want to automate user administration. The whole 'useradmin useradd' thing with its interactive interface and live password addition (who the heck only lets root set a user's pasword?) is probably not going to work with our 500+ filers. 500xNumberOfAdmins. Yeah, right.
The docs point to fairly standard /etc/[passwd,shadow,group] files, but having added a user, I still don't see them on my box. Has anyone automated user management?
-MikeC
*From:* Michael Christian *Sent:* Friday, October 29, 2004 9:08 PM *To:* 'Potakamuri, Sreenivasa'; Thorsten.Lemke@computacenter.com; bparent@calvin.ucsd.edu *Cc:* toasters@mathworks.com *Subject:* RE: ssh scripts
Nice, that did it. Thanks. User-level auditing will be a godsend.
-MikeC
*From:* Potakamuri, Sreenivasa [mailto:Sreenivasa.Potakamuri@netapp.com] *Sent:* Thursday, October 28, 2004 10:53 PM *To:* Michael Christian; Thorsten.Lemke@computacenter.com; bparent@calvin.ucsd.edu *Cc:* toasters@mathworks.com *Subject:* RE: ssh scripts
This problem has been fixed in 6.4.5, 6.5.1 and above.
Bug number for this problem is 90495.
Regards,
Sreeni
Network Appliance
-----Original Message----- *From:* Michael Christian [mailto:mchristi@yahoo-inc.com] *Sent:* Thu 10/28/2004 11:07 AM *To:* Thorsten.Lemke@computacenter.com; bparent@calvin.ucsd.edu *Cc:* toasters@mathworks.com *Subject:* RE: ssh scripts On a similar note, I've been trying to get user-level auditing working using ssh. When you telnet in, it logs actions under your userid, but when you ssh in, it logs everything as root. (Presumably because sshd is running as root?) Has anyone else had this problem, or know of a workaround? This is 6.5X18 -Mike ***************************************
Michael Christian wrote:
Next question. I want to automate user administration. The whole ‘useradmin useradd’ thing with its interactive interface and live password addition (who the heck only lets root set a user’s pasword?) is probably not going to work with our 500+ filers. 500xNumberOfAdmins. Yeah, right.
The docs point to fairly standard /etc/[passwd,shadow,group] files, but having added a user, I still don’t see them on my box. Has anyone automated user management?
Hello Michael
How about using expect? Excerpt from http://expect.nist.gov/ : "Expect is a tool for automating interactive applications such as telnet, ftp, passwd, fsck, rlogin, tip, etc. Expect really makes this stuff trivial. Expect is also useful for testing these same applications. And by adding Tk, you can also wrap interactive applications in X11 GUIs."
With the help of "expect" I wrote my own autoinstaller for filers named "NAAI" (NetApp AutoInstaller) who sets up our training machines every week. It's job is to wipe out all(!) tracks of the last week admin class. Connect to the Filers, "set-defaults" the BIOS, boot over TFTP, wipe out all data on the disks, step through the "setup" dialog, install licenses and ONTAP, set date and timezone, vol lang and options, and ... much more. ;-)
=> I really can recommend expect for automatisation of filer useradmin/password activities.
Best regards! Dirk
-
Dirk Schmiedt -
Michael Christian -
Stephane