1,238
edits
Changes
Jump to navigation
Jump to search
Line 14:
Line 14: − + − + +
→System Description
=System Description=
=System Description=
*all production software is on a VM in our server closet and should be documented on the official [https://github.com/pumpingstationone PS1 Github]
*all production software is on a VM in our server closet and documented on the official [https://github.com/pumpingstationone PS1 Github]
*[membership.pumpingstationone.org The member management system], Wild Apricot, user has RFID fob entered into user profile. Can be by admin or self service, seperate multiple tags by a comma
*[membership.pumpingstationone.org The member management system], Wild Apricot, user has RFID fob entered into user profile. Can be by admin or self service, seperate multiple tags by a comma
*WA2AD goes down the list of all members in WA and does an active directory lookup to see if the member exists and verifies members status. If the user doesn't exist an AD user is created. It runs on our active directory controller (DC01), via Windows task scheduler every 5 mins. Ron uses a tool called "active directory explorer" to see all groups in users in AD.
*WA2AD goes down the list of all members in WA and does an active directory lookup to see if the member exists and verifies members status. If the user doesn't exist an AD user is created. It runs on our active directory controller (DC01), via Windows task scheduler every 5 mins. Ron uses a tool called "active directory explorer" to see all groups in users in AD.
*WA2AD handles computer authorization - it looks up the string associated with the "computer authorizations" checkbox in WA and puts the user in an AD groups that enables the user to log into the computer associated with that piece of equipment.
*WA2AD handles computer authorization - it looks up the string associated with the "computer authorizations" checkbox in WA and puts the user in an AD groups that enables the user to log into the computer associated with that piece of equipment.
*Active directory stores member status with the userAccountControl field - if a members is inactive their RFID fob and all computer logins are disabled.
*Active directory stores member status with the userAccountControl field - if a members is inactive their RFID fob and all computer logins are disabled.
*AD2RFID is a program that runs as a cron job everty 15 min on Glue, a centOS linux box.
*AD2RFID is a program that runs as a cron job everty 15 min on Glue, a centOS linux box. It only adds users to the board when they are new and explicitly diables them on the board when they are inactive members. It replaces all members every time it runs.