Enabling authentication in OpsCenter

Instructions for enabling role-based authentication in OpsCenter.

OpsCenter offers granular, role-based permission control for user and role management. By default, authentication is disabled. The first time authentication is enabled, a default admin account is created with username admin and password admin.

If you enable OpsCenter authentication, DataStax strongly recommends enabling SSL communication between OpsCenter and the agents.
Important: Changing the default admin password is strongly recommended the first time you log in.
Note: OpsCenter allows you to build your own authentication connectors to third-party authentication systems. Use the resources in the auth directory of your OpsCenter server installation:
  • API documentation: opscenter-auth-docs-opscenter_version.tgz
  • Framework SDK JAR file: opscenter-auth-api-opscenter_version.jar

auth

The location of the auth directory depends on the type of installation:
  • Package installations: /usr/share/opscenter/auth
  • Tarball installations: installation_location/opscenter/auth

opscenterd.conf

The location of the opscenterd.conf file depends on the type of installation:
  • Package installations: /etc/opscenter/opscenterd.conf
  • Tarball installations: install_location/conf/opscenterd.conf

Procedure

  1. Edit the opscenterd.conf file and enable authentication.

    Set enabled=True in the [authentication] section.

    [authentication]
    enabled=True
  2. Restart OpsCenter.
  3. Open the OpsCenter user interface in a browser.
    http://localhost:8888
  4. Enter the default username of admin and the password admin.
    Note: If pluggable authentication is enabled, the default username and password will vary based on the information used when pluggable authentication was enabled.