Closed letompouce closed 5 years ago
Q: how should we name the account?
A: we shall make it quite generic. localadmin
for instance, would be meaningful in regard to the bsfadmin
naming.
Q: how should we set the password? A: it should not be generic to all projects. Right now there is no project-specific information available to the playbook to derive something from it.
On a sidenote, we already document this feature, so the due date might be set to ASAP :-)
We create a
bsfadmin
account for sysadmin purpose.It happen that a partner wants to perform sysadmin stuff as well. Right now, there is no other mean that share the
bsfadmin
password.We should create a sudoer account for the partner. This way, a local IT would be able to perform sysadmin tasks, using its own ssh keys / password / dotfiles /whatnot.