User Accounts
Obtaining a computer account on SCDF systems requires employment at BNL or a valid affiliation and successful completion of BNL https://training.bnl.gov/portal/GE-CYBERSEC. Once these prerequisites are complete, submit a new user request at https://useraccount.sdcc.bnl.gov/new-user. After the request has been processed, you will be notified via email when the account has been activated.
Logging In
To access SCDF facilities and services, all users must have an Ssh.
If you are offsite or want to log in to the analysis facility, you will need to log in to one of the SSH Gateways.
Passwords and SSH Keys
Every SCDF user is assigned two passwords, a Kerberos and an email password. It is highly recommended that users choose separate passwords for each of these two (or three) functions as they serve as the “keys” to the facility. Select good passwords.
The Kerberos password is used to upload an SSH private key to the facility for access to . The email password is used to access mail on the RCF IMAP server (rcf.rhic.bnl.gov).
Reusable passwords are not allowed as an authentication method for interactive access to the SCDF. Access presently is controlled via a two-factor authentication method implemented with SSH public/private key pairs. Users will need to generate a key pair then upload the public key to the facility. Two Factor Authentication are available for generating, uploading, and using keys.
Terminating an Account
When a user’s BNL appointment expires, access to SCDF gateway machines is blocked and a person will no longer have access to the facility. A user’s account contents will not be deleted unless such a request has been made by the appropriate sources (users or the respective collaborations). Users may terminate an SCDF account before their appointments expire by submitting a Ticket System request via Reporting Problems and providing the account name and date when the account should be terminated.