chef - [chef] Re: Restriction of shell access for new user on a linux box

First login ?
Lost password ?

Subscribers: 1946
Owners
Bryan McLellan
Joshua Timberman
Nathen Harvey
Seth Chisamore
Serdar Sutay

Subscribe
Unsubscribe
Info
Archive

Post

RSS
Shared documents

General discussion about Chef

[chef] Re: Restriction of shell access for new user on a linux box

From: mandi walls < >
To:
Subject: [chef] Re: Restriction of shell access for new user on a linux box
Date: Mon, 23 Mar 2015 14:54:59 -0400

exit code 3 is invalid argument for option.

my guess would be the comment you have - there's a colon in your string "chef created service user: svc_goagent".

colon is the delimiter for the passwd file and wouldn't be permitted in the user data.

On Mon, Mar 23, 2015 at 2:27 PM, ANGELA EBIRIM < " target="_blank"> > wrote:

Hello everyone,

Has anyone had experience of restricting access for a particular user using the user resource in Chef?

I'm trying to create a service user who will have restricted access on a linux box.

I have done the following:-

user user do
supports :manage_home => true
comment "chef created service user: #{user}"
home "/home/#{user}"
shell '/sbin/nologin'
action :create
end

but have been unsuccessful.

I noticed that during the chef run the following output was generated when an attempt was made to create a service user:

Ran ["useradd", "-c", "chef created service user: svc_goagent", "-s", "/sbin/nologin", "-d", "/home/svc_goagent", "-m", "svc_goagent"] returned 3 and not 0.

Any ideas?

Many thanks
Sent from iCloud

Mandi Walls

" target="_blank">

@lnxchk

[chef] Restriction of shell access for new user on a linux box, ANGELA EBIRIM, 03/23/2015
- [chef] Re: Restriction of shell access for new user on a linux box, mandi walls, 03/23/2015
  - [chef] Re: Restriction of shell access for new user on a linux box, ANGELA EBIRIM, 03/23/2015