Operations grimoire/Create and revoke user accounts on Salt servers

From Nasqueron Agora

📕📁📜 Old technical information :: content warning

⌛ This Nasqueron Operations Grimoire page hasn't been updated for a long time.

☣ As our infrastructure evolves quickly, there is a good chance this information is outdated or now inaccurate. Be careful and consider update it.

➡️ To assert the information is still up-to-date or not, you can check the history of the relevant role in our Operations repository.

Create an user

  1. Add public SSH key to roles/shellserver/users/files/ssh_keys/<account> file
  2. Add entry to pillar/users/shellusers.sls

Revoke an user

  1. Delete roles/shellserver/users/files/ssh_keys/<account> file
  2. Remove entry from pillar/users/shellusers.sls
  3. Add entry to pillar/users/revokedusers.sls

Run the Salt

If you've access to the Salt master in production:

salt eglide state.apply roles/shellserver/users

See Operations grimoire/Deploy with Salt.

Retrieved from "https://agora.nasqueron.org/index.php?title=Operations_grimoire/Create_and_revoke_user_accounts_on_Salt_servers&oldid=856"