[OpenAFS] grant access to foreign principals

Derrick Brashear shadow@gmail.com
Tue, 29 Jul 2008 00:34:41 -0400

pts cg system:authuser@other.cell, give it a groupquota high enough
for as many foreign users as you want to be able to create themselves.
aklog can do so, at that point.

On Mon, Jul 28, 2008 at 1:30 PM, David Bear <David.Bear@asu.edu> wrote:
> I'm not I am using the correct terminology, so let me describe a simple
> scenario.
> Lets say I wanted to grant research at another univeristy permissions to
> read files in my afs cell.
> Lets also suppose they have afs and kerberos.
> Is it possible to create a user in pts that would be something like
> 'joe@remoteuniversity.edu', and then grant the user permissions in my cell?
> The goal would be that joe authenticates to remoteuniversity.edu the same
> way he always does -- and only needs that set of afs tokens to get to files
> in my afs space.
> --
> David Bear
> College of Public Programs at ASU
> 602-464-0424