ESD Software Engineering

ESD iocConsole cdioc AFS and NFS Accounts

The cdioc ESD AFS and NFS shared account is used for iocConsole access. This account is "password-less" to prevent password-sharing; login access to the account is via SSH keys.

For more detail on SSH and AFS at SLAC, see Secure Shell (SSH) at SLAC and the SLAC AFS Users' Guide.

Adding a New User to the cdioc account

If a user needs access but does not already have an SSH public/private key pair, the new user must first generate a public RSA key. From the user's AFS unix account, issue the following command and respond to all prompts with a return <CR>.
ssh-keygen -t rsa1
Generating public/private rsa key pair.
Enter file in which to save the key:
Enter passphrase (empty for no passphrase):
Enter same passphrase again:

The resulting public key will be written to the file '' in the user's .ssh directory.

The resultant key in ~<user_name>/.ssh/ must be added to the ~cdioc/.ssh/authorized_keys files for both of its AFS and NFS accounts.

For NFS,

For AFS, the owner of the AFS cdioc account, Debbie, Jingchen, Terri, or Lazmo must:

The new user can now ssh into the cdioc account. From unix:
ssh -l cdioc slcsun1
If you are unable to ssh into the cdioc account check the following:

Other Notes:

[SLAC ESD Software Engineering Group]
[SLAC Home Page]
Author: Debbie Rogind, 23-Sept-2004  
Last Modified: Debbie Rogind, 01-Sept-2005