Changes between Version 2 and Version 3 of how-to/servers/create-backup-account


Ignore:
Timestamp:
Aug 10, 2013, 3:50:27 PM (6 years ago)
Author:
Jamie McClelland
Comment:

--

Legend:

Unmodified
Added
Removed
Modified
  • how-to/servers/create-backup-account

    v2 v3  
    33The steps for creating a backup account for a member are:
    44
    5 1. Find a backup server with available space.
    6 2. As `root@BACKUP_SERVER` do
     5 * Use iz.mayfirst.org (for now).
     6 * Edit the iz.pp file in puppet
     7 * Add a stanza in the following format:
     8
    79{{{
    8 useradd -m -U MEMBER_NAME-sync
    9 }}}
    10 3. Create a backup directory for the MEMBER_NAME-sync user at /home/members/MEMBERNAME-sync/backups
    11 {{{
    12 mkdir -p /home/members/MEMBER_NAME-sync/backups
    13 }}}
    14 4. Change ownership of that directory to the MEMBER_NAME-sync user.
    15 {{{
    16 chown MEMBER_NAME-sync:MEMBER_NAME-sync /home/members/MEMBER_NAME-sync/backups
    17 }}}
    18 5. login as the MEMBER_NAME-sync user.
    19 {{{
    20 su - MEMBER_NAME-sync
    21 }}}
    22 6. Create a symlink to the backup directory from the member's home directory.
    23 {{{
    24 ln -s /home/members/MEMBER_NAME-sync/backups backups
    25 }}}
    26 7. Add the rsa key for the user or their monkeysphere/gpg user id to the /home/MEMBER-NAME-sync/.ssh/authorized_keys file or /home/MEMBER-NAME-sync/.monkeysphere/authorized_user_ids file respectively.  Then run
    27 {{{
    28  monkeysphere-authentication u MEMBER_NAME-sync
     10  m_backupninja::server::configure_member_backup{ "$group":
     11    username => "$username",
     12    ssh_key => "$ssh_key"
     13  }
    2914}}}
    3015
    31 The member should now be able to ssh into the server with `ssh MEMBER_NAME-sync@SERVER_NAME.mayfirst.org`.  If they can, then your task is complete!
     16$group should be replaced by the member's short group name (if you are not sure what that is - you can login to their mosh. It's the name in their sites directory that comes after /home/members/ (e.g. May First's directory is: /home/members/mayfirst.org/sites/mayfirst.org and "mayfirst" is our group name).
     17
     18$username should be the login used on the backup server. The easiest format is to add "-sync" to their group name (e.g. mayfirst-sync).
     19
     20$ssh_key should be the ssh public key that provide to you, including the "ssh-rsa" part at the beginning and (optionally) including the {{{user@domain}}} tag at at the end.
     21
     22 * Commit your changes, push the changes to origin and then to iz.
     23
     24The member should now be able to ssh into the server with `ssh $username@iz.mayfirst.org`.  You may direct them to the [wiki:faq/backup-setup user's backup help page].