improve TOC
This commit is contained in:
@@ -1,13 +1,13 @@
|
||||
# Infrastructure Administration
|
||||
|
||||
# linux.psi.ch
|
||||
## linux.psi.ch
|
||||
linux.psi.ch is hosted from this git repo as git pages. There is a proxy entry for the domain name linux.psi.ch on the F5 reverse proxy, that is managed by the network team, to reach the git pages by https://linux.psi.ch
|
||||
|
||||
The HTTPS certificates of the domain linux.psi.ch is managed by the network team.
|
||||
|
||||
# Email Lists
|
||||
## Email Lists
|
||||
|
||||
## linux@psi.ch
|
||||
### linux@psi.ch
|
||||
|
||||
Right now following people are on the list:
|
||||
- Marc Caubet
|
||||
|
||||
@@ -40,22 +40,22 @@ __Enduser Systems__
|
||||
## Metrics
|
||||
* [Overview Infrastructure](https://metrics.psi.ch/d/1SL13Nxmz/gfa-linux-tabular?orgId=1&from=now-6h&to=now&refresh=30s&var-env=telegraf_lx&var-host=influx00.psi.ch&var-host=lx-boot-01.psi.ch&var-host=lx-puppet-01.psi.ch&var-host=lx-repos-01.psi.ch&var-host=lx-sysdb-01.psi.ch&var-host=lxweb00.psi.ch&var-host=metrics00.psi.ch&var-host=puppet01.psi.ch)
|
||||
|
||||
# Procedures
|
||||
## Procedures
|
||||
|
||||
* [Adding a new RHEL version to the RHEL7 install mechanism](newver)
|
||||
* [How to grant access to RHEL7 infrastructure](https://git.psi.ch/linux-infra/user-ca/blob/master/README.md#automated-with-ansible-for-pli-infrastructure-systems-of-rhel-7)
|
||||
* [Grant new person right for bob/sysdb](newbob)
|
||||
* [How to reinstall a machine](howtoreinstall)
|
||||
|
||||
# Tools
|
||||
## Tools
|
||||
|
||||
* [SSH config](sshconf)
|
||||
|
||||
# HTTPS Certificates
|
||||
## HTTPS Certificates
|
||||
* [HTTPS Certificates](https://linux.psi.ch/admin-guide/operations/certificates.html)
|
||||
|
||||
|
||||
# SSH Certificates / Signing Public User Keys
|
||||
## SSH Certificates / Signing Public User Keys
|
||||
|
||||
Generate a ssh key e.g. as follows:
|
||||
```bash
|
||||
@@ -95,7 +95,7 @@ sign-user-ssh-key $PRINCIPAL $PUBKEY_FILE
|
||||
More details on how this works can be found in this article: https://engineering.fb.com/2016/09/12/security/scalable-and-secure-access-with-ssh/
|
||||
|
||||
|
||||
# Unix Groups
|
||||
## Unix Groups
|
||||
|
||||
Currently we have following AD groups to grant access to certain services/systems:
|
||||
|
||||
@@ -121,7 +121,7 @@ Access VM infrastructure for linux core employees:
|
||||
| ---- | ---- |
|
||||
| VC_Admins_Linux | Access to the PSI VM Infrastructure |
|
||||
|
||||
# AD Users
|
||||
## AD Users
|
||||
| Group | Notes |
|
||||
| ---- | ---- |
|
||||
| lx-netops-api | (keytab) Used to access the netops api |
|
||||
|
||||
Reference in New Issue
Block a user