Configuring Access Control
The Access Control Settings page allows you to define the accounts that can access the cloud appliance through its virtual console or a SecureShell (SSH) client. Keep in mind that only Administrator users can enable, edit, or delete access control settings.
Note: The Administrator GUI account and ServiceLogin SSH account are enabled by default upon deployment of the cloud appliance.
- From the Configuration menu, select Security > Access Control to display the Access Control Settings page.
- Select the Enable account check box for the appropriate account.
- Enter the following information:
Enter the new password to authenticate the account.
Confirm New Password
Re-enter the password to confirm it.
When defining the account password, you can enter up to 32 characters, and use both alphanumeric and special characters.
- Click Apply to enable to account.
After deploying your Q-Cloud Protect appliance, you can immediately connect to it through a SecureShell (SSH) client using the ServiceLogin account. This account is authenticated using the key pair assigned to the instance during launch.
To access your Q-Cloud Protect appliance through SecureShell (SSH) using the cliadmin or cliviewer accounts, you must enable them from the appliance's Access Control Settings page. As part of this process, you will need to access the public key from the key pair assigned to the instance during launch. Using a key pair generator, such as PuTTY Key Generator, you can load the key pair, and copy and paste the public key into the cloud appliance's GUI.
Note: Only Administrator users can enable, edit, or delete access control settings.
This task depicts key pair generation using PuTTY Key Generator, but you may use other key pair generators at your discretion.
- From the PuTTY Key Generator window, click Load to browse to the key pair downloaded from AWS.
- Locate and select the private key (
You may need to select All Files (*.*) from the File name drop-down list to locate the
- After the key pair is loaded, protect it by populating the Key passphrase and Confirm passphrase fields.
- Click Save private key to save the passphrase for the key pair. You will need to enter this passphrase to access your cloud appliance through SSH.
- Use the displayed public key to enable SSH accounts.
- From the cloud appliance's Home page, select Configuration > System > Security to display the Access Control Settings page.
- Select the Enable account check box for either the cliadmin or cliviewer SSH account.
- Click Add to display the Add Public Key page.
- In the Alias field, assign an alias to the SSH account.
- An alias can be up to 20 characters.
- An alias must be an alphanumeric string (no spaces or special characters).
- It is OK to have the same alias for different accounts (such as QCPEast for both the cliadmin and cliviewer accounts).
- In the Public Key field, copy and paQCPEastste the public key of the AWS key pair.
- Click Apply to display the Successfully performed Security action message.
- Click Ok to add the new key to the SSH account.
- Select Enable account again and click Apply to enable to account.