Merge branch 'master' of git.psi.ch:linux-infra/documentation

2022-11-09 11:49:53 +01:00
parent 3bc91e7bb2 4efaf77557
commit d4a403bedb
1 changed files with 20 additions and 0 deletions
@@ -56,6 +56,7 @@ Access to the redhat.com knowledge base:
 # HTTPS Certificates
 * [HTTPS Certificates](https://linux.psi.ch/admin-guide/operations/certificates.html)

+
 # SSH Certificates / Signing Public User Keys

 Use the [user ca certificate](https://git.psi.ch/linux-infra/core-linux-secrets/-/blob/main/ssh-ca/user-ca.gpg), but this is automated by pasting below function into your shell
@@ -88,3 +89,22 @@ sign-user-ssh-key $PRINCIPAL $PUBKEY_FILE
 ```

 More details on how this works can be found in this article: https://engineering.fb.com/2016/09/12/security/scalable-and-secure-access-with-ssh/
+
+
+# Unix Groups
+
+Currently we have following AD groups to grant access to certain services/systems:
+
+| Group | Notes |
+| ---- | ---- |
+| unx-linux_support | used to give Linux supporters access to systems/services |
+| unx-puppet_adm -| associated with lxdev environment/systems |
+| unx-puppet_dev | developer of puppet code |
+| unx-puppet_usr | user of puppet (i.e. need access to linux-infra group/repos) |
+
+These two groups are used within Service now to assign tickets:
+| Group |
+| ---- |
+| itsm-linux  |
+| itsm-linux_2nd |
+