accountCreate
Create a new bastion account
usage
--osh accountCreate --account ACCOUNT <--uid UID|--uid-auto> [OPTIONS]
- --account NAME
Account name to create, NAME must contain only valid UNIX account name characters
- --uid UID
Account system UID, also see --uid-auto
- --uid-auto
Auto-select an UID from the allowed range (the upper available one will be used)
- --always-active
This account's activation won't be challenged on connection, even if the bastion is globally
configured to check for account activation
- --osh-only
This account will only be able to use
--oshcommands, and can't connect anywhere through the bastion
- --max-inactive-days DAYS
Set account expiration policy, overriding the global bastion configuration 'accountMaxInactiveDays',
setting this option to zero disables account expiration.
- --immutable-key
Deny any subsequent modification of the account key (selfAddKey and selfDelKey are denied)
- --comment '"STRING"'
An optional comment when creating the account. Quote it twice as shown if you're under a shell.
- --public-key '"KEY"'
Account public SSH key to deposit on the bastion, if not present,
you'll be prompted interactively for it. Quote it twice as shown if your're under a shell.
- --no-key
Don't prompt for an SSH key, no ingress public key will be installed
- --ttl SECONDS|DURATION
Time after which the account will be deactivated (amount of seconds, or duration string such as "4d12h15m")