Authentication

OpCenter maintains its own database of usernames and passwords for authenticating logins (users are added with the float user add command). This is the "built-in" method. There are additional authentication methods:

• Local Linux /etc/passwd file
• LDAP

To configure local Linux authentication using float, enter the following (does not require a restart of the OpCenter):

float config set security.enableLocal true
float config set security.adminGroup wheel

To configure local Linux authentication by editing the opcenter.yml file, complete the following steps.

• Log in to the OpCenter server.
• Open the file called /etc/memverge/opcenter.yml with a text editor.
• In the security section, insert the following lines.

  security:
    ...
    enableLocal: true
    adminGroup: wheel

• Save and close file.
• Restart the OpCenter by entering the following.

  float restart

To enable LDAP authentication, complete the following steps.

• Log in to the OpCenter server.
• Open the file called /etc/memverge/opcenter.yml with a text editor.
• In the security section, insert the following lines.

  security:
  ...
    enableLdap: true
    ldap:
      network: tcp
      addr: <ldap_server_ip_address>:636
      useTLS: true
      anonymous: true
      base: dc=memverge,dc=com
      adminGroup: wheel
      peopleOU: People
      groupOU: Group
    ...

  where <ldap_server_ip_address> is the IP address of the LDAP server.
• Save and close file.
• Update the OpCenter configuration by entering the following:

  float config set security.enableLdap true

• Restart the OpCenter by entering the following.

  float restart