ref: 07e51d1019e9f2d22a0e97140d6605f48d14d83b
parent: 503034c48f1103b522fbc4e5a659b3604ba2e288
author: jrmu <jrmu@cloud9p.org>
date: Sat Aug 17 11:31:59 EDT 2024
Add basic guide for setting up auth server
--- /dev/null
+++ b/auth.ms
@@ -1,0 +1,25 @@
+To set up an auth server, add lines like below to /lib/ndb/local:
+
+ auth=198.51.100.2
+ authdom=example.com
+
+These lines must be added to a tuple that applies to your machine.
+
+Make sure you have added the user to the filesystem.
+
+Configure the nvram with auth/wrkey.
+
+In /lib/ndb/auth, you need something like the following:
+
+hostid=glenda
+
+uid=!sys uid=!adm uid=*
+
+This allows glenda to speak on behalf of all users except sys and adm.
+
+If the machine is an auth server, keyfs will be started upon boot.
+
+Then, run:
+
+auth/changeuser username
+