Difference between revisions of "Configuring SCB ERPM/RED/PI Credential Store Plugin for SCB/PSM/SPS"

From Onepoint Systems Integration
Jump to: navigation, search
(Basic Static Configuration)
(Basic Static Configuration)
 
Line 11: Line 11:
 
   ignoresslcertificateerrors = True
 
   ignoresslcertificateerrors = True
 
   authtype = 'static'
 
   authtype = 'static'
   authenticator = \'\'
+
   authenticator = ''
 
   username = '<USERNAME>'
 
   username = '<USERNAME>'
 
   password = '<PASSWORD>'
 
   password = '<PASSWORD>'

Latest revision as of 18:34, 22 May 2020

Basic Configuration

The basic configuration is the simplest possible, where system name and namespace will be got automatically from plugin internal parameters. The only things you need to specify are the address for the ERPM/RED/PI REST Web Services, the ignoresslcertificateerrors parameters for if it will or not ignore SSL errors, and the auth type.

Basic Static Configuration

In Basic Static Configuration, the authentication parameters for ERPM/RED/PI are inside the configuration parameters, in plain text, in the username and password parameters. the authenticator parameter must be empty, and authtype must be static.

 address = 'http://<ADDRESS>/ERPMWebService/AuthService.svc/REST'
 ignoresslcertificateerrors = True
 authtype = 'static'
 authenticator = 
 username = '<USERNAME>'
 password = '<PASSWORD>'
 debug = True
 docheckin = True
 behavior = {
   'ssh': {
     'system': None,
     'namespace': None,
   },
   'rdp': {
     'namespace': None,
     'system': None,
   }
 }

Basic Dynamic Configuration

In Basic Dynamic Configuration, the authentication parameters for the ERPM/RED/PI are the specified for the PSM authentication. You will need only to specify the domain in the authenticator parameters, and the authtype is dynamic.

 address = 'http://<ADDRESS>/ERPMWebService/AuthService.svc/REST'
 ignoresslcertificateerrors = True
 authtype = 'dynamic'
 authenticator = '<DOMAIN>'
 username = 
 password = 
 debug = True
 docheckin = True
 behavior = {
   'ssh': {
     'system': None,
     'namespace': None,
   },
   'rdp': {
     'namespace': None,
     'system': None,
   }
 }

Configuration with Constant Parts (For Lists or Substituting Systems)

If the credentials are not under the automatic systemname and namespace, but fixed ones, you can use additional search points for looking up for credentials under the "additional" property in the configuration. This property has as value a list, where each member is a search point for the credential (system and namespace for stored credentials, or mode = list and list, for shared credentials).

Example

 address = 'http://<ADDRESS>/ERPMWebService/AuthService.svc/REST'
 ignoresslcertificateerrors = True
 authtype = 'dynamic'
 authenticator = 'COMET'
 username = 
 password = 
 debug = True
 docheckin = True
 behavior = {
   'ssh': {
     'system': None,
     'namespace': None,
     'additional': [
       {
         'system': 'LDAPSYSTEM',
         'namespace': '[LDAP]'
       },
       {
         'system': 'lab.example.com',
         'namespace': 'LAB'
       },
       {
         'mode': 'list',
         'list': 'TestList'
       }
     ]
   },
   'rdp': {
     'namespace': None,
     'system': None
   }
 }