Dell PowerStore 1000T EMC PowerStore Security Configuration Guide - Page 6

Authentication and access, Authenticating and Managing User Accounts, Roles, and Privileges

Get Dell PowerStore 1000T PDF manuals and user guides View all Dell PowerStore 1000T manuals
Add to My Manuals
Save this manual to your list of manuals

Page 6 highlights

1 Authentication and access This chapter contains the following information: Topics: • Authenticating and Managing User Accounts, Roles, and Privileges • Certificates • Secure communication between PowerStore appliances within a cluster • Secure communication for replication and data import • vSphere Storage API for Storage Awareness support • CHAP authentication • Configuring CHAP • External SSH access • Configuring external SSH access • NFS secure • Security on file system objects • File systems access in a multiprotocol environment • Understanding Common AntiVirus Agent (CAVA) • Code signing Authenticating and Managing User Accounts, Roles, and Privileges Authentication for access to the cluster is performed based on the credentials of a user account. User accounts are created and subsequently managed from the Users page, which is accessible in PowerStore Manager through Settings > Users > Users. The authorizations that apply depend on the role associated with the user account. When the user specifies the network address of the cluster as the URL in a web browser, the user will be presented with a login page from which the user can authenticate as a local user. The credentials that the user provides will be authenticated and a session will be created on the system. Subsequently, the user can monitor and manage the cluster within the capabilities of the role assigned to the user. The cluster authenticates its users by validating user names and passwords through a secure connection with the management server. Factory default management Your appliance comes with factory default user account settings to use when initially accessing and configuring the appliance. NOTE: With releases 1.0.x, it is recommended that you initially configure PowerStore using the PowerStore Manager UI rather than using the API, CLI, or Service Scripts interfaces. It will ensure that all the default passwords are changed. Account type System management Service Username admin service Password Password123# service Privileges Administrator privileges for resetting default passwords, configuring appliance settings, and managing user accounts. For performing service operations. NOTE: The service user exists for secure shell (SSH) access. However, you cannot log into PowerStore Manager using the service user. 6 Authentication and access

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
Authentication and access
This chapter contains the following information:
Topics:
Authenticating and Managing User Accounts, Roles, and Privileges
Certificates
Secure communication between PowerStore appliances within a cluster
Secure communication for replication and data import
vSphere Storage API for Storage Awareness support
CHAP authentication
Configuring CHAP
External SSH access
Configuring external SSH access
NFS secure
Security on file system objects
File systems access in a multiprotocol environment
Understanding Common AntiVirus Agent (CAVA)
Code signing
Authenticating and Managing User Accounts,
Roles, and Privileges
Authentication for access to the cluster is performed based on the credentials of a user account. User accounts are created and
subsequently managed from the
Users
page, which is accessible in PowerStore Manager through
Settings
>
Users
>
Users
. The
authorizations that apply depend on the role associated with the user account. When the user specifies the network address of the cluster
as the URL in a web browser, the user will be presented with a login page from which the user can authenticate as a local user. The
credentials that the user provides will be authenticated and a session will be created on the system. Subsequently, the user can monitor
and manage the cluster within the capabilities of the role assigned to the user.
The cluster authenticates its users by validating user names and passwords through a secure connection with the management server.
Factory default management
Your appliance comes with factory default user account settings to use when initially accessing and configuring the appliance.
NOTE:
With releases 1.0.x, it is recommended that you initially configure PowerStore using the PowerStore Manager UI
rather than using the API, CLI, or Service Scripts interfaces. It will ensure that all the default passwords are changed.
Account type
Username
Password
Privileges
System management
admin
Password123#
Administrator privileges for resetting default
passwords, configuring appliance settings, and
managing user accounts.
Service
service
service
For performing service operations.
NOTE:
The service user exists for secure
shell (SSH) access. However, you cannot log
into PowerStore Manager using the service
user.
1
6
Authentication and access