Skip to main content
Sign Out

Welcome to Dell

My Account
  • Place orders quickly and easily
  • View orders and track your shipping status
  • Enjoy members-only rewards and discounts
  • Create and access a list of your products
  • Manage your Dell EMC sites, products, and product-level contacts using Company Administration.
Sign In Create an Account Dell Financial Services Premier Sign In Partner Program Sign In
Contact Us

Your Dell.com Carts

Dell APEX Cloud Platform for Microsoft Azure Security Configuration Guide

PDF

Authentication

This section describes the default settings and configuration options to authenticate Dell APEX Cloud Platform for Microsoft Azure.

The following figure shows the authentication for Dell APEX Cloud Platform for Microsoft Azure:

Figure 1. Authentication flow

APEX Cloud Platform Manager

APEX Cloud Platform uses LDAPs to authenticate users when they access the APEX Cloud Platform Manager UI. You can integrate an AD enterprise Identity Provider (IdP) with the domain controller. Integrating the IdP provides centralized password and account policy management to align with your security standards and policies.

Default APEX Cloud Platform mystic account password

For the APEX Cloud Platform, the mystic account password is set by default from the factory.

Change the default mystic password after the initial configuration process. For more information, see the Dell APEX Cloud Platform Administration Guide on the Dell Support site.

The root user is disabled in SSH. You must use the mystic account to access APEX Cloud Platform Manager using SSH. For privileged operations, use sudo.

User management

You can change the following passwords:

Table 1. Change passwords
Component User ID Purpose Initialization Customer updated APEX Cloud Platform stored

iDRAC

root

User account to administer the iDRAC.

Customer defined after deployment

Yes

No

iDRAC

vxpsvc

Internal service account for APEX Cloud Platform Manager to communicate with iDRAC to perform lifecycle management operations.

Auto-generated, rotated every 6 hours.

No

Yes

Active Directory

Customer defined

Active Directory credentials for AzureStackLCMUserCredential that you define when you use the AsHciADArtifactsPreCreationTool tool before deployment.

Customer set before first run

Yes

Yes, AES256 is encrypted.

APEX Cloud Platform Manager

root

Used by APEX Cloud Platform Manager to communicate with HCI OS Nodes

Customer set at first run

Yes

No

APEX Cloud Platform Manager

service

Internal service account

Customer set a first run

Yes

No

APEX Cloud Platform Manager

mystic

Local HCI OS log on to the main credential with administration rights.

Customer set at first run

Yes

No

Node

Administrator

(After cluster deployed, changed to ASBuiltinAdmin)

End user local administrator credential for HCI OS. Not used by Platform Manager post deployment.

Customer set at first run

Yes

No

For more information, see the Managing password section in Dell APEX Cloud Platform for Microsoft Azure Administration Guide available in the Dell Support site.

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\