X-Git-Url: https://git.adam-barratt.org.uk/?a=blobdiff_plain;f=input%2Fhowto%2Fadd-account.creole;h=55ccf900780d199179bd6d37a1f0356cd423f16e;hb=71e41a55291d8ac91888f355b3601546e3475cc5;hp=0c9f379e7ec5896982cd276b07821857650e0b3f;hpb=6832f644768a92cd0c4becc109e4d34771e80aa8;p=mirror%2Fdsa-wiki.git diff --git a/input/howto/add-account.creole b/input/howto/add-account.creole index 0c9f379..55ccf90 100644 --- a/input/howto/add-account.creole +++ b/input/howto/add-account.creole @@ -1,4 +1,4 @@ -== add an account to ud-ldap == +== how to add an account to ud-ldap == === Introduction === @@ -11,7 +11,7 @@ so that Debian's Keyring may be updated with the user's GPG key. Subsequently, the RT ticket will be assigned to a Debian System Administrator (DSA) so that Debian's LDAP may be updated. -This HOWTO documents DSA's actions relating to account creation. +This HOWTO documents DSA's actions relating to such tickets. The RT ticket will contain the following details in a GPG-signed message: * the user's account type ("uploading DD") @@ -20,19 +20,61 @@ The RT ticket will contain the following details in a GPG-signed message: * the user's forwarding address * the user's preferred account name -=== Procedure === +=== Procedure for New Accounts === Step 1: Download the GPG-signed message from RT and verify the signature. Ensure that the message has been signed by a DAM (for a list of DAMs, see -http://wiki.debian.org/DAManager or http://www.debian.org/intro/organization). +https://wiki.debian.org/DAManager or https://www.debian.org/intro/organization). -Step 2: Create an entry in LDAP by executing ud-useradd on db-master. +Step 2: Create an entry in LDAP by executing ud-useradd on draghi. {{{ - you@home~$ ssh you@db-master.debian.org + you@home~$ ssh db.debian.org you@draghi~$ ud-useradd }}} -You will be prompted to enter the fingerprint; first, middle and last names, -the forwarding address and the preferred account name. +You will be prompted to enter the fingerprint; the preferred account name; the +first, middle and last names; and the forwarding address. Some of these values +will be extracted from the GPG key, if available. + +Use the @debian.org for the debian-private subscription. + +Accept the randomly generated password. + +Step 3: Confirm account creation. + +Step 4: Resolve the RT ticket. Enter the 'final information collected' emitted +by ud-adduser as the message of the resolution action. Carbon copy the +forwarding address and da-manager@debian.org. + +Step 5: Add a welcome message for the account name to the #debian-devel topic on IRC. + +=== Procedure for Upgrading Guest Accounts === + +Step 1: same as above + +Step 2: Remove the GPG key from guest-keyring. + +{{{ + you@home~$ sudo apt-get install jetring + you@home~$ git clone ssh://db.debian.org/git/guest-keyring.git + you@home~$ cd guest-keyring + you@home~$ ./del-key + you@home~$ git status + you@home~$ git add debian-guest/delete- + you@home~$ git commit -a +}}} + +Step 3: Modify the LDAP entry. + +{{{ + you@draghi~$ ud-guest-upgrade + you@draghi~$ ldapmodify -ZZ -x -D uid=$USER,ou=users,dc=debian,dc=org -W -h db.debian.org + ldapvi -ZZ -D uid=,ou=users,ou=debian,ou=org +}}} + +Step 4: Email welcome-message-Debian to the user, substituting parameters. + +Step 5: Resolve the RT ticket. Carbon copy the forwarding address and +da-manager@debian.org.