Introduction
A common requirement for research organizations is to provide access via SSH to command line tools hosted on Unix-based systems. Provisioning and deprovisioning the accounts required for access, and leveraging the researcher's existing credentials to authenticate the access, are common challenges in providing this access.
Goals
Leverage COmanage to enroll a researcher to a collaboration, collect the researcher's SSH public key, and create a Unix account for the researcher.
- Configure an Enrollment Flow to allow a researcher to join a collaboration.
- Configure an LDAP provisioner to write Unix account information to LDAP.
- Enroll the researcher.
- Upload the researcher's SSH keys.
- Login to the unix server as the researcher.
Architecture and Configuration
x
Resources
- Screencast demonstrating this pilot
- COmanage documentation