Hello,
I'm building a RHEL 6.6 server and integrating it with my LDAP server. I created a bash script to automatically run after the OS is deployed which will define specific LDAP groups and add them to /etc/sudoers and /etc/ssh/sshd_config. This is great to automatically grant groups of users access, but what if I want to automatically grant an individual user instead. Specifically what if I want to grant the user that logged into vRA and requested the RHEL server? I would like to know if its possible to identify the LDAP account of the user who logged into vRA and requested the RHEL server, and somehow pipe that into the bash script so when the script runs, it calls that info and adds the individual user. Is the bash script even the way to do this or is there another mechanism that can achieve this?
The idea is to limit access to root/ssh to the individual that deployed it.