commandes permettant de créer un compte utilisateur sur le bastion SSH Passshport (doana.asap.dsna.fr)
- doc: https://docs.passhport.org/fr/latest/passhport-admin/cli.html
- diagramme : https://excalidraw.com/#room=43181ddd620c9b7950c8,7hDATgBEKMQxN0zfDcm8rA
# prérequis :
# copier la clé publique sur le serveur bastion
scp id_ecdsa.pub admin@doana:
# creation d'un user (prenom.nom) -> bastion -> target_login@target_host
# login on target
target_login=airways
# target_host
target_host=airways
# target account
target_account="${target_login}@${target_host}"
comment="${target_login}@${target_host}.eei.cena.fr"
passhport-admin target create "${target_account}" $target_host --login $target_login --comment "${comment}"
passhport-admin target list | grep "${target_account}"
passhport-admin target sort "${target_account}"
# création du compte user
export KEY=$(cat id_ecdsa.pub)
user_name='prenom.nom'
email="$user_name@aviation-civile.gouv.fr"
export KEY=`cat id_ecdsa.pub`
passhport-admin user create "${user_name}" "${KEY}" --comment="$user_name / $email"
passhport-admin user show ${user_name}
passhport-admin target adduser $user_name "${target_account}"
passhport-admin user show $user_name
# copie de la clé publique de passhport sur la cible
ssh-copy-id -i /home/passhport/.ssh/id_ecdsa "${target_account}"