This procedure must be performed by an Dev Ops or Enterprise Admin with an intricate understanding of your security architecture and your IT infrastructure.
Cliqruser:
Is the default user to log into the Application VM from the CCM UI – Contact the CloudCenter Support team for details on a Custom Windows Image (Installer).
Refers to an OS user in the Application VM (Worker) – see Deployment Lifecycle Scripts for additional context.
By default, key-based authentication is configured using cliqruser.
If you do not want to use the default cliqruser account, you can alternately use password-based authentication to access Application VMs on a per-tenant basis.
You cannot configure password-based authentication from the CCM UI. You can only do so from the CCM API as described in this section.
To configure password-based authentication, follow this procedure.
Use the following APIs to retrieve some basic information:
You can override the default property as a ROOT Admin or a Tenant Admin. Either way, your login credentials determine if you are an admin (platform (root), tenant admin, or co-admin) or a user. See CloudCenter API Overview > Who Can Use CloudCenter APIs? for additional context.
Use the View Tenants API for your current tenant to determine your Tenant ID:
Use the View All Tenant Properties API to determine the propertyId for the required Property name (propertyName) for this password-based authentication (enable.password.auth) setting, which has an ID of 132.
Use the Create Tenant Properties Override API to override the default (false) setting for the enable.password.auth property name with a propertyId of 132.
https://<HOST>:<PORT>/v1/tenantProperties/override
{
"propertyId":"132",
"vendorId":"2",
"propertyValue":"true"
}
{
"propertyId":"132",
"propertyValue":"true"
}
You have now overridden the default cliqruser account usage in order to use password-based authentication to access Application VMs on a per-tenant basis.