This section describes the default settings and configuration options to authenticate Dell APEX Cloud Platform for Microsoft Azure.
The following figure shows the authentication for Dell APEX Cloud Platform for Microsoft Azure:
APEX Cloud Platform uses LDAPs to authenticate users when they access the APEX Cloud Platform Manager UI. You can integrate an AD enterprise Identity Provider (IdP) with the domain controller. Integrating the IdP provides centralized password and account policy management to align with your security standards and policies.
For the APEX Cloud Platform, the mystic account password is set by default from the factory.
Change the default mystic password after the initial configuration process. For more information, see the Dell APEX Cloud Platform Administration Guide on the Dell Support site.
The root user is disabled in SSH. You must use the mystic account to access APEX Cloud Platform Manager using SSH. For privileged operations, use sudo.
You can change the following passwords:
Component | User ID | Purpose | Initialization | Customer updated | APEX Cloud Platform stored |
---|---|---|---|---|---|
iDRAC | root | User account to administer the iDRAC. | Customer defined after deployment | Yes | No |
iDRAC | vxpsvc | Internal service account for APEX Cloud Platform Manager to communicate with iDRAC to perform lifecycle management operations. | Auto-generated, rotated every 6 hours. | No | Yes |
Active Directory | Customer defined | Active Directory credentials for AzureStackLCMUserCredential that you define when you use the AsHciADArtifactsPreCreationTool tool before deployment. | Customer set before first run | Yes | Yes, AES256 is encrypted. |
APEX Cloud Platform Manager | root | Used by APEX Cloud Platform Manager to communicate with HCI OS Nodes | Customer set at first run | Yes | No |
APEX Cloud Platform Manager | service | Internal service account | Customer set a first run | Yes | No |
APEX Cloud Platform Manager | mystic | Local HCI OS log on to the main credential with administration rights. | Customer set at first run | Yes | No |
Node | Administrator (After cluster deployed, changed to ASBuiltinAdmin) | End user local administrator credential for HCI OS. Not used by Platform Manager post deployment. | Customer set at first run | Yes | No |
For more information, see the Managing password section in Dell APEX Cloud Platform for Microsoft Azure Administration Guide available in the Dell Support site.