migration
This commit is contained in:
16
index.sh
16
index.sh
@@ -13,7 +13,7 @@ export current_host=$(hostname)
|
|||||||
# Install SSSD and required tools
|
# Install SSSD and required tools
|
||||||
# We use sssd-ldap for the backend and libnss-sss/libpam-sss for the system hooks
|
# We use sssd-ldap for the backend and libnss-sss/libpam-sss for the system hooks
|
||||||
DEBIAN_FRONTEND=noninteractive apt update
|
DEBIAN_FRONTEND=noninteractive apt update
|
||||||
DEBIAN_FRONTEND=noninteractive apt install -y sssd sssd-ldap libnss-sss libpam-sss ldap-utils libsss-sudo curl libsasl2-modules-gssapi-mit
|
DEBIAN_FRONTEND=noninteractive apt install -y sudo sssd sssd-ldap libnss-sss libpam-sss ldap-utils libsss-sudo curl libsasl2-modules-gssapi-mit
|
||||||
|
|
||||||
# Create the SSSD configuration from template
|
# Create the SSSD configuration from template
|
||||||
mkdir -p /etc/sssd
|
mkdir -p /etc/sssd
|
||||||
@@ -52,5 +52,17 @@ systemctl enable --now sssd-sudo.socket
|
|||||||
# --- SSO Group Creation API Calls ---
|
# --- SSO Group Creation API Calls ---
|
||||||
if [[ -v sso_token ]]; then
|
if [[ -v sso_token ]]; then
|
||||||
echo "Registering host groups via API..."
|
echo "Registering host groups via API..."
|
||||||
# (Existing curl logic remains here)
|
echo "found token"
|
||||||
|
curl "${sso_url}/api/group/" \
|
||||||
|
-H "auth-token: ${sso_token}" \
|
||||||
|
-H "content-type: application/json; charset=UTF-8" \
|
||||||
|
--data-binary "{\"name\":\"host_${current_host}_access\",\"description\":\"Access for $current_host\"}"
|
||||||
|
|
||||||
|
curl "${sso_url}/api/group/" \
|
||||||
|
-H "auth-token: ${sso_token}" \
|
||||||
|
-H "content-type: application/json; charset=UTF-8" \
|
||||||
|
--data-binary "{\"name\":\"host_${current_host}_admin\",\"description\":\"sudo for $current_host\"}"
|
||||||
fi
|
fi
|
||||||
|
|
||||||
|
echo "--- SSSD Migration Complete! ---"
|
||||||
|
echo "Please verify authentication and user access."
|
||||||
Reference in New Issue
Block a user