Ubuntu 18.04
Sponsored Link

FreeIPA : ユーザー管理の基本操作2018/11/27

[1] FreeIPA ユーザーアカウントを追加する。
root@dlp:~#
ipa user-add bionic --first=Bionic --last=Beaver --password

Password:
Enter Password again to verify:
-------------------
Added user "bionic"
-------------------
  User login: bionic
  First name: Bionic
  Last name: Beaver
  Full name: Bionic Beaver
  Display name: Bionic Beaver
  Initials: BB
  Home directory: /home/bionic
  GECOS: Bionic Beaver
  Login shell: /bin/bash
  Principal name: bionic@IPA.SRV.WORLD
  Principal alias: bionic@IPA.SRV.WORLD
  User password expiration: 20181126061530Z
  Email address: bionic@ipa.srv.world
  UID: 1389200005
  GID: 1389200005
  Password: True
  Member of groups: ipausers
  Kerberos keys available: True
[2] FreeIPA ユーザーアカウントをロック/アンロックする。
root@dlp:~#
ipa user-disable bionic

----------------------------
Disabled user account "bionic"
----------------------------
root@dlp:~#
ipa user-enable bionic

---------------------------
Enabled user account "bionic"
---------------------------
[3] FreeIPA ユーザーアカウントを検索する。
root@dlp:~#
ipa user-find bionic

--------------
1 user matched
--------------
  User login: bionic
  First name: Bionic
  Last name: Beaver
  Home directory: /home/bionic
  Login shell: /bin/bash
  Principal name: bionic@IPA.SRV.WORLD
  Principal alias: bionic@IPA.SRV.WORLD
  Email address: bionic@ipa.srv.world
  UID: 1389200005
  GID: 1389200005
  Account disabled: False
----------------------------
Number of entries returned 1
----------------------------

root@dlp:~#
ipa user-show --raw bionic

  uid: bionic
  givenname: Bionic
  sn: Beaver
  homedirectory: /home/bionic
  loginshell: /bin/bash
  krbcanonicalname: bionic@IPA.SRV.WORLD
  krbprincipalname: bionic@IPA.SRV.WORLD
  mail: bionic@ipa.srv.world
  uidnumber: 1389200005
  gidnumber: 1389200005
  nsaccountlock: FALSE
  has_password: TRUE
  has_keytab: TRUE
[4] FreeIPA ユーザーアカウントを削除する。
root@dlp:~#
ipa user-del bionic

-------------------
Deleted user "fedora"
-------------------
[5] FreeIPA グループを追加する。
root@dlp:~#
ipa group-add --desc='Development Group' development

-------------------------
Added group "development"
-------------------------
  Group name: development
  Description: Development Group
  GID: 1389200006
[6] FreeIPA グループへメンバーを追加する。
root@dlp:~#
ipa group-add-member --users=redhat,ubuntu development

  Group name: development
  Description: Development Group
  GID: 1389200006
  Member users: ubuntu
-------------------------
Number of members added 1
-------------------------
[7] FreeIPA グループへグループを入れ子で追加する。
root@dlp:~#
ipa group-add-member --groups=development hiroshima

  Group name: hiroshima
  GID: 1389200007
  Member groups: development
  Indirect Member users: ubuntu
-------------------------
Number of members added 1
-------------------------
[8] FreeIPA グループを検索する。
root@dlp:~#
ipa group-find development

---------------
1 group matched
---------------
  Group name: development
  Description: Development Group
  GID: 1389200006
----------------------------
Number of entries returned 1
----------------------------
[9] FreeIPA グループを削除する。
root@dlp:~#
ipa group-del hiroshima

-------------------------
Deleted group "hiroshima"
-------------------------
関連コンテンツ