Managing Login Accounts

Describes how to change your password and enable key-based authentication for gateway login accounts.

Leave Feedback

Introduction

The OpsRamp gateway has two user accounts: admin and ruser. Both accounts help in activities related to administrative, configuration, and basic troubleshooting.

  • Administration User (admin): An admin can access the Gateway Web interface and command line interface for administration activities.
    These activities include credentials configuration, gateway registration, date and time change, and network settings. This account does not provide shell access to the gateway appliance.
  • System User (ruser): An ruser can access gateway command line interface with sudo privileges to perform basic troubleshooting activities, such as accessing the gateway’s log files, ping and SNMP walk. A system user can access a gateway directly using the key-based authentication also.

Changing passwords

The default passwords for admin and ruser accounts are available from the OpsRamp Console. Navigate to Setup, Download and click Gateway to access password settings.

Command line interface

To change the password:

  1. Using SSH, log into the gateway’s command line interface with your username and password, .
  2. Follow the menu options to change the password.

Gateway web interface

To change the password:

  1. From your browser, log into gateway https://<gatewayip>:5480, using your credential.
  2. Follow instructions in the web interface to change your password.

Enabling key-based authentication

Key-based authentication is allowed only for the system user. This authentication helps the ruser to log into the gateway with a private key instead of a password. A public key and a private key combination is used to authenticate the login.

To generate a public and private key:

  1. Log into your Linux machine and open a terminal.
  2. At the shell prompt and type the following command: ssh-keygen -t rsa
    The ssh-keygen program prompts you for the location of the key file.
  3. Press Enter to accept the default location.
  4. Optionally, specify a passphrase to protect your key material.
  5. Press Enter to omit the passphrase. The output of the program appears as below.
    Enter file in which to save the key (/Users/user1/.ssh/id_rsa):
    Created directory '/Users/user1/.ssh'.
    Enter passphrase (empty for no passphrase):
    Enter same passphrase again:
    Your identification has been saved in /Users/user1/.ssh/id_rsa.
    Your public key has been saved in /Users/user1/.ssh/id_rsa.pub.
    
  6. Open the id_rsa.pub file and copy the content.
    Make sure to copy the public key properly without any space at the beginning or end.
  7. On Gateway web user interface:
    1. Go to the Password page.
    2. Paste the public key in the Provide Public Key box for the Appliance System user.
    3. Click Save.