[OpenAFS] grant access to foreign principals
Derrick Brashear
shadow@gmail.com
Tue, 29 Jul 2008 00:34:41 -0400
pts cg system:authuser@other.cell, give it a groupquota high enough
for as many foreign users as you want to be able to create themselves.
aklog can do so, at that point.
On Mon, Jul 28, 2008 at 1:30 PM, David Bear <David.Bear@asu.edu> wrote:
> I'm not I am using the correct terminology, so let me describe a simple
> scenario.
>
> Lets say I wanted to grant research at another univeristy permissions to
> read files in my afs cell.
>
> Lets also suppose they have afs and kerberos.
>
> Is it possible to create a user in pts that would be something like
> 'joe@remoteuniversity.edu', and then grant the user permissions in my cell?
>
> The goal would be that joe authenticates to remoteuniversity.edu the same
> way he always does -- and only needs that set of afs tokens to get to files
> in my afs space.
>
> --
> David Bear
> College of Public Programs at ASU
> 602-464-0424