How do I change internal user account names and passwords?
Purpose
For enhanced security, NSP allows reconfiguration of internal account user names and passwords. Internal account information is held in Kubernetes secrets. These accounts are only used internally by NSP applications and cannot be managed through the NSP GUI. These user names and passwords are randomly generated at install time but customers may choose to update these internal accounts after an install or upgrade. The internal account user names and password can be changed by updating the Kubernetes secret associated with that internal account.
NSP uses the following kubernetes secrets that contain internal user name and password information:
| WARNING Internal communication disruption |
Changing an internal account kubernetes secret could disrupt communications within an NSP deployment.
Steps
1 |
Open a terminal session to the NSP deployer VM. |
2 |
Log in as the root or NSP admin user. |
3 |
The following command modifies an internal account secret. You can select a kubernetes secret from the list above. Enter the following: # cd /opt/nsp/NSP-CN-DEP-release-ID/bin ↵ # ./nspdeployerctl secret -n nsp-psa-restricted -s <secret> -v <username attribute>=<new username> -p <password attribute>=<new password> update ↵ where <secret> is the name of the kubernetes secret being modified <username attribute> is user name attribute in the secret <new username> is the new user name for the secret <password attribute> is the password attribute in the secret <new password> is the new password for the secret End of steps |