Create admin user

Question

Create admin user

Closed this issue 5 years ago · 4 comments

Add another user to the client machine that has can access the config server and from there (as a jump host) all other machines.

Do we accept the risk that if the config server is down, the admin has to physically go to the internal network to be able to fix something?

Answer 1 · 2019-11-10T17:38:35.000Z

Do we accept the risk that if the config server is down, the admin has to physically go to the internal network to be able to fix something?

Don't we use redundancy for aslans?

Answer 2 · 2019-11-10T17:41:17.000Z

No, parts of the ansible script even assume that there is only one of them.
Also it would be a risk, since then two servers have key material to access the whole infrastructure.

Imo, we're better off if we accept this risk.

Answer 3 · 2019-11-11T01:21:33.000Z

Imo, we're better off if we accept this risk.

I second that

Answer 4 · 2019-11-13T10:24:27.000Z

Done in #51