{"id":34958,"date":"2024-09-06T14:04:47","date_gmt":"2024-09-06T07:04:47","guid":{"rendered":"http:\/\/jupitek.maudemo.vip\/index.php\/2024\/09\/06\/use-cloud-init-to-manage-users-on-new-servers\/"},"modified":"2024-09-06T14:04:47","modified_gmt":"2024-09-06T07:04:47","slug":"use-cloud-init-to-manage-users-on-new-servers","status":"publish","type":"post","link":"https:\/\/jupitek.maudemo.vip\/index.php\/2024\/09\/06\/use-cloud-init-to-manage-users-on-new-servers\/","title":{"rendered":"S\u1eed d\u1ee5ng Cloud-Init \u0111\u1ec3 qu\u1ea3n l\u00fd ng\u01b0\u1eddi d\u00f9ng tr\u00ean server m\u1edbi"},"content":{"rendered":"

Cloud-init<\/a> l\u00e0 gi\u1ea3i ph\u00e1p ti\u00eau chu\u1ea9n c\u00f4ng nghi\u1ec7p \u0111\u1ec3 t\u1ef1 \u0111\u1ed9ng h\u00f3a vi\u1ec7c tri\u1ec3n khai m\u00e1y ch\u1ee7, h\u1ed7 tr\u1ee3 tr\u00ean nhi\u1ec1u n\u1ec1n t\u1ea3ng v\u00e0 b\u1ea3n ph\u00e2n ph\u1ed1i. K\u1ebft h\u1ee3p si\u00eau d\u1eef li\u1ec7u n\u1ec1n t\u1ea3ng v\u1edbi c\u00e1c t\u1eadp l\u1ec7nh d\u1eef li\u1ec7u ng\u01b0\u1eddi d\u00f9ng t\u00f9y ch\u1ec9nh, cloud-init c\u00f3 th\u1ec3 \u0111\u01a1n gi\u1ea3n h\u00f3a \u0111\u00e1ng k\u1ec3 qu\u00e1 tr\u00ecnh kh\u1edfi t\u1ea1o m\u00e1y ch\u1ee7 m\u1edbi.<\/p>\n

V\u1edbi d\u1ecbch v\u1ee5 Metadata<\/a> c\u1ee7a Akamai , b\u1ea1n c\u00f3 th\u1ec3 t\u1eadn d\u1ee5ng cloud-init \u0111\u1ec3 tri\u1ec3n khai Compute Instances. M\u1ed9t t\u1eadp l\u1ec7nh d\u1eef li\u1ec7u ng\u01b0\u1eddi d\u00f9ng cloud-config c\u00f3 th\u1ec3 x\u00e1c \u0111\u1ecbnh m\u1ecdi th\u1ee9 b\u1ea1n c\u1ea7n \u0111\u1ec3 kh\u1edfi t\u1ea1o c\u00e1c phi\u00ean b\u1ea3n, t\u1eeb b\u1ea3o m\u1eadt v\u00e0 thi\u1ebft l\u1eadp ng\u01b0\u1eddi d\u00f9ng \u0111\u1ebfn c\u00e0i \u0111\u1eb7t ph\u1ea7n m\u1ec1m v\u00e0 t\u1eadp l\u1ec7nh shell.<\/p>\n

H\u01b0\u1edbng d\u1eabn n\u00e0y tr\u00ecnh b\u00e0y chi ti\u1ebft c\u00e1ch b\u1eaft \u0111\u1ea7u l\u00e0m vi\u1ec7c v\u1edbi ng\u01b0\u1eddi d\u00f9ng nh\u01b0 m\u1ed9t ph\u1ea7n c\u1ee7a tri\u1ec3n khai cloud-init c\u1ee7a b\u1ea1n. \u0110\u1ecdc ti\u1ebfp \u0111\u1ec3 bi\u1ebft c\u00e1c t\u1eadp l\u1ec7nh cloud-config \u0111\u1ec3 cung c\u1ea5p ng\u01b0\u1eddi d\u00f9ng, th\u00eam kh\u00f3a SSH v\u00e0 v\u00f4 hi\u1ec7u h\u00f3a quy\u1ec1n truy c\u1eadp root t\u1eeb xa.<\/p>\n

Tr\u01b0\u1edbc khi b\u1eaft \u0111\u1ea7u, b\u1ea1n n\u00ean xem l\u1ea1i h\u01b0\u1edbng d\u1eabn c\u1ee7a ch\u00fang t\u00f4i v\u1ec1 c\u00e1ch s\u1eed d\u1ee5ng Cloud-Init \u0111\u1ec3 t\u1ef1 \u0111\u1ed9ng c\u1ea5u h\u00ecnh v\u00e0 b\u1ea3o m\u1eadt m\u00e1y ch\u1ee7 c\u1ee7a b\u1ea1n<\/a> . \u1ede \u0111\u00f3, b\u1ea1n c\u00f3 th\u1ec3 xem c\u00e1ch t\u1ea1o t\u1ec7p cloud-config, t\u1ec7p m\u00e0 b\u1ea1n c\u1ea7n l\u00e0m theo h\u01b0\u1edbng d\u1eabn hi\u1ec7n t\u1ea1i. Khi b\u1ea1n \u0111\u00e3 s\u1eb5n s\u00e0ng tri\u1ec3n khai cloud-config, h\u01b0\u1edbng d\u1eabn \u0111\u01b0\u1ee3c li\u00ean k\u1ebft \u1edf tr\u00ean s\u1ebd cho bi\u1ebft c\u00e1ch th\u1ef1c hi\u1ec7n.<\/p>\n

T\u1ea1o ng\u01b0\u1eddi d\u00f9ng<\/a><\/h2>\n

Trong m\u1ed9t t\u1eadp l\u1ec7nh cloud-config, users<\/code>t\u00f9y ch\u1ecdn n\u00e0y x\u1eed l\u00fd vi\u1ec7c t\u1ea1o ng\u01b0\u1eddi d\u00f9ng v\u00e0 h\u1ea7u h\u1ebft c\u00e1c t\u00ednh n\u0103ng \u0111\u1ec3 qu\u1ea3n l\u00fd ng\u01b0\u1eddi d\u00f9ng. \u1ede m\u1ee9c \u0111\u01a1n gi\u1ea3n nh\u1ea5t, t\u00f9y ch\u1ecdn n\u00e0y c\u00f3 th\u1ec3 ho\u1ea1t \u0111\u1ed9ng v\u1edbi \u00edt nh\u1ea5t m\u1ed9t m\u1ee5c, \u0111\u1ea3m b\u1ea3o r\u1eb1ng cloud-init t\u1ea1o ra ng\u01b0\u1eddi d\u00f9ng m\u1eb7c \u0111\u1ecbnh. B\u1ea5t k\u1ec3 b\u1ea1n th\u00eam ng\u01b0\u1eddi d\u00f9ng n\u00e0o kh\u00e1c, b\u1ea1n c\u0169ng default<\/code>n\u00ean gi\u1eef m\u1ed9t m\u1ee5c nh\u1eadp cho ng\u01b0\u1eddi d\u00f9ng \u0111\u00f3.default<\/code><\/p>\n

users:\n  - default<\/code><\/pre>\n
\u0110\u1ec3 t\u1ea1o th\u00eam ng\u01b0\u1eddi d\u00f9ng, h\u00e3y th\u00eam m\u1ed9t m\u1ee5c kh\u00e1c v\u00e0o danh s\u00e1ch v\u1edbi \u00edt nh\u1ea5t m\u1ed9t name<\/code>tr\u01b0\u1eddng x\u00e1c \u0111\u1ecbnh t\u00ean ng\u01b0\u1eddi d\u00f9ng. V\u00ed d\u1ee5, \u0111\u1ec3 t\u1ea1o example-user<\/code>, b\u1ea1n c\u00f3 th\u1ec3 s\u1eed d\u1ee5ng c\u1ea5u h\u00ecnh nh\u01b0 th\u1ebf n\u00e0y.<\/p>\n
users:\n  - default\n  - name: example-user<\/code><\/pre>\n
Qu\u00e1 tr\u00ecnh cloud-init thi\u1ebft l\u1eadp ng\u01b0\u1eddi d\u00f9ng v\u1edbi m\u1ed9t lo\u1ea1t c\u00e1c m\u1eb7c \u0111\u1ecbnh, nh\u01b0 th\u01b0 m\u1ee5c home v\u00e0 nh\u00f3m ng\u01b0\u1eddi d\u00f9ng. Tuy nhi\u00ean, b\u1ea1n th\u01b0\u1eddng mu\u1ed1n ki\u1ec3m so\u00e1t nhi\u1ec1u h\u01a1n m\u1ed9t ch\u00fat vi\u1ec7c t\u1ea1o ng\u01b0\u1eddi d\u00f9ng, \u0111\u1eb7c bi\u1ec7t l\u00e0 n\u1ebfu b\u1ea1n \u0111\u1ecbnh truy c\u1eadp ng\u01b0\u1eddi d\u00f9ng qua SSH. C\u00e1c ph\u1ea7n ti\u1ebfp theo s\u1ebd \u0111\u1ec1 c\u1eadp \u0111\u1ebfn c\u00e1c t\u00ednh n\u0103ng nh\u01b0 ch\u1ec9 \u0111\u1ecbnh nh\u00f3m<\/a> (bao g\u1ed3m sudo<\/code>quy\u1ec1n truy c\u1eadp) v\u00e0 th\u00eam kh\u00f3a SSH<\/a> cho ng\u01b0\u1eddi d\u00f9ng. Trong v\u00ed d\u1ee5 b\u00ean d\u01b0\u1edbi v\u00e0 ph\u1ea7n ph\u00e2n t\u00edch \u0111i k\u00e8m, c\u00f3 m\u1ed9t s\u1ed1 t\u00f9y ch\u1ecdn h\u1eefu \u00edch b\u1ed5 sung \u0111\u1ec3 qu\u1ea3n l\u00fd ng\u01b0\u1eddi d\u00f9ng m\u1edbi.<\/p>\n
users:\n  - default\n  - name: example-user\n    gecos: Example User,600-700-8090\n    shell: \/bin\/bash\n    lock_passwd: false\n    passwd: <PASSWORD_HASH><\/code><\/pre>\n
\u0110i\u1ec1u n\u00e0y t\u1ea1o ra m\u1ed9t ng\u01b0\u1eddi d\u00f9ng c\u01a1 b\u1ea3n, c\u00f3 th\u1ec3 truy c\u1eadp b\u1eb1ng t\u00ean ng\u01b0\u1eddi d\u00f9ng v\u00e0 m\u1eadt kh\u1ea9u. Sau \u0111\u00e2y l\u00e0 gi\u1ea3i th\u00edch v\u1ec1 ch\u1ee9c n\u0103ng c\u1ee7a t\u1eebng ph\u1ea7n trong v\u00ed d\u1ee5:<\/p>\n