Generalized use case for SSH
There are other non-Web cases that we are declaring out of scope, e.g. Excel macros accessing remote data repositories.
- Participant is enrolled in the CO
- Username, UID, and Home Directory assigned
- Initially, Home Directory could be assigned as an identifier, but probably better for it to be its own data element
- Unix account provisioned to LDAP (RFC 2307) (CO-863)
- Create a home directory and provision (CO-865)
- Participant rsync to push directories to remote servers?
- Participant uploads (CO-856) / generates (CO-857) SSH key
- SSH key provisioned to home directory (CO-668)
- rsync to push to remote servers? Same mechanism as above
- Or write to LDAP (CO-864)
- See also: Provisioning ssh keys via LDAP
- When Participant logs in to server, server queries LDAP for /etc/passwd attributes and sees SSH keys in home directory