liunx 创建远程用户帐号

2015-09-07

#add_remote_user.sh
#liunx创建远程用户帐号
#!/bin/bash
### AUTHOR: Joe 
### DATE: 2015/08/05
### REV: 1.0
if [ ! -n "$1" ];then
   echo -e "Input the username you want grant login privilege to:\c"
   read username
   pub_key=$(cat /data/backup/authorized_keys_bak/$username'.pub')
   echo -e "Input the ip address $username want to login:\c"
   read ipadd
   echo -e "Whether need root permissions? [yes|no]:\c"
   read sudo
   ssh -n $ipadd '(chattr -i /etc/passwd /etc/group /etc/shadow /etc/sudoers)'
   FIND_USER=`ssh -n $ipadd "grep -c $username /etc/passwd"`
   if [ $FIND_USER -gt 0 ];then
      ssh -n $ipadd "userdel -r  $username"
   fi
   ssh -n $ipadd '(useradd '$username')'
   ssh -n $ipadd '(mkdir /data/home/'$username'/.ssh)'
   ssh -n $ipadd '(echo '$pub_key' > /data/home/'$username'/.ssh/authorized_keys)'
   ssh -n $ipadd '(chown -R '$username' /data/home/'$username'/.ssh)'
   ssh -n $ipadd '(chmod 700 /data/home/'$username'/.ssh;chmod 600 /data/home/'$username'/.ssh/authorized_keys)'
   if [ $sudo == yes ];then
      ssh -n $ipadd "echo -e '$username\tALL=(ALL)\tNOPASSWD: ALL' >>/etc/sudoers"
   fi
   ssh -n $ipadd '(chattr +i /etc/passwd /etc/group /etc/shadow /etc/sudoers)'
   ssh -n $ipadd '(useradd '$username')'
   ssh -n $ipadd '(mkdir /data/home/'$username'/.ssh)'
   ssh -n $ipadd '(echo '$pub_key' > /data/home/'$username'/.ssh/authorized_keys)'
   ssh -n $ipadd '(chown -R '$username' /data/home/'$username'/.ssh)'
   ssh -n $ipadd '(chmod 700 /data/home/'$username'/.ssh;chmod 600 /data/home/'$username'/.ssh/authorized_keys)'
   if [ $sudo == yes ];then
      ssh -n $ipadd "echo -e '$username\tALL=(ALL)\tNOPASSWD: ALL' >>/etc/sudoers"
   fi
   ssh -n $ipadd '(chattr +i /etc/passwd /etc/group /etc/shadow /etc/sudoers)'
   echo "$ipadd login privilege has been granted to $username!"
else
   echo -e "Input the username you want grant login privilege to:\c"
   read username
   pub_key=$(cat /data/backup/authorized_keys_bak/$username'.pub')
   echo -e "Whether need root permissions? [yes|no]:\c"
   read sudo
   for ipadd in `cat $1`
   do
     ssh -n $ipadd '(chattr -i /etc/passwd /etc/group /etc/shadow /etc/sudoers)'
     FIND_USER=`ssh -n $ipadd "grep -c $username /etc/passwd"`
     if [ $FIND_USER -gt 0 ];then
        ssh -n $ipadd "userdel $username"
     fi
     ssh -n $ipadd '(useradd '$username')'
     ssh -n $ipadd '(mkdir /data/home/'$username'/.ssh)'
     ssh -n $ipadd '(echo '$pub_key' > /data/home/'$username'/.ssh/authorized_keys)'
     ssh -n $ipadd '(chown -R '$username' /data/home/'$username'/.ssh)'
     ssh -n $ipadd '(chmod 700 /data/home/'$username'/.ssh;chmod 600 /data/home/'$username'/.ssh/authorized_keys)'
     if [ $sudo == yes ];then
        ssh -n $ipadd "echo -e '$username\tALL=(ALL)\tNOPASSWD: ALL' >>/etc/sudoers"
     fi
     ssh -n $ipadd '(chattr +i /etc/passwd /etc/group /etc/shadow /etc/sudoers)'
     echo "$ipadd login privilege has been granted to $username!"
   done
fi

 

posted @ 2015-09-07 14:20  岑亮  阅读(497)  评论(0编辑  收藏  举报