To create a new user which syncs across all VMs in your tenancy, you must to configure the IPA server directly via CLI or its Web UI . See the How to configure the IPA Server page for operation examples.
Created users cannot be automatically added to the sudoers group, due to security reasons. However, you can grant sudo privileges manually via CLI or Web UI (check the How to configure the IPA Server page for CLI usage examples). Once you've create the rule (if it doesn't exists already) and you add it to a group, all users in that group will be using that rule.
Sync of a new LDAP users might take some minutes. Therefore if you might not be able to login immediately after user creation.
If you use LDAP integrated with Morpheus, you can create a new LDAP user and make it visible to Morpheus by running a designated Morpheus Workflow. To do so, head over to the Provisioning tab in Morpheus and click your LDAP instance.
Select Actions > Run Workflow > Create a new LDAP user.
Fill in the values, and do note that the public SSH key is mandatory. Below is a screenshot of a correctly filled workflow.
Fill all mandatory information:
- FIRST NAME
- LAST NAME
- USERNAME
- PUBLIC SSH KEY
- INITIAL PASSWORD
The user will be prompted to change their password upon first login after successful creation and the minimum lifetime of password is set to 1 hour.