Controls/gitea-pages
0
2
Fork 0
Code Pull Requests Actions Activity

improve TOC

Browse Source
This commit is contained in:
buchel_k
2023-05-11 08:07:21 +02:00
parent e956078403
commit e472a5ac5b
2 changed files with 9 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
infrastructure-guide/infrastructure_administration.md
View File

@@ -1,13 +1,13 @@
# Infrastructure Administration
# linux.psi.ch
## linux.psi.ch
linux.psi.ch is hosted from this git repo as git pages. There is a proxy entry for the domain name linux.psi.ch on the F5 reverse proxy, that is managed by the network team, to reach the git pages by https://linux.psi.ch
The HTTPS certificates of the domain linux.psi.ch is managed by the network team.
# Email Lists
## Email Lists
## linux@psi.ch
### linux@psi.ch
Right now following people are on the list:
- Marc Caubet

12
infrastructure-guide/infrastructure_systems.md
View File

@@ -40,22 +40,22 @@ __Enduser Systems__
## Metrics
* [Overview Infrastructure](https://metrics.psi.ch/d/1SL13Nxmz/gfa-linux-tabular?orgId=1&from=now-6h&to=now&refresh=30s&var-env=telegraf_lx&var-host=influx00.psi.ch&var-host=lx-boot-01.psi.ch&var-host=lx-puppet-01.psi.ch&var-host=lx-repos-01.psi.ch&var-host=lx-sysdb-01.psi.ch&var-host=lxweb00.psi.ch&var-host=metrics00.psi.ch&var-host=puppet01.psi.ch)
# Procedures
## Procedures
* [Adding a new RHEL version to the RHEL7 install mechanism](newver)
* [How to grant access to RHEL7 infrastructure](https://git.psi.ch/linux-infra/user-ca/blob/master/README.md#automated-with-ansible-for-pli-infrastructure-systems-of-rhel-7)
* [Grant new person right for bob/sysdb](newbob)
* [How to reinstall a machine](howtoreinstall)
# Tools
## Tools
* [SSH config](sshconf)
# HTTPS Certificates
## HTTPS Certificates
* [HTTPS Certificates](https://linux.psi.ch/admin-guide/operations/certificates.html)
# SSH Certificates / Signing Public User Keys
## SSH Certificates / Signing Public User Keys
Generate a ssh key e.g. as follows:
```bash
@@ -95,7 +95,7 @@ sign-user-ssh-key $PRINCIPAL $PUBKEY_FILE
More details on how this works can be found in this article: https://engineering.fb.com/2016/09/12/security/scalable-and-secure-access-with-ssh/
# Unix Groups
## Unix Groups
Currently we have following AD groups to grant access to certain services/systems:
@@ -121,7 +121,7 @@ Access VM infrastructure for linux core employees:
| ---- | ---- |
| VC_Admins_Linux | Access to the PSI VM Infrastructure |
# AD Users
## AD Users
| Group | Notes |
| ---- | ---- |
| lx-netops-api | (keytab) Used to access the netops api |