This is a draft document that was built and uploaded automatically. It may document beta software and be incomplete or even incorrect. Use this document at your own risk.

Jump to contentJump to page navigation: previous page [access key p]/next page [access key n]
Deployment, Administration, and User Guides › SUSE Cloud Application Platform Administration › Accessing the UAA User Interface
ContentsContents
Deployment, Administration, and User Guides
  1. About This Guide
  2. I Overview of SUSE Cloud Application Platform
    1. 1 About SUSE Cloud Application Platform
    2. 2 Other Kubernetes Systems
  3. II Deploying SUSE Cloud Application Platform
    1. 3 Deployment and Administration Notes
    2. 4 Deploying SUSE Cloud Application Platform on SUSE CaaS Platform
    3. 5 Deploying SUSE Cloud Application Platform on Microsoft Azure Kubernetes Service (AKS)
    4. 6 Deploying SUSE Cloud Application Platform on Amazon Elastic Kubernetes Service (EKS)
    5. 7 Deploying SUSE Cloud Application Platform on Google Kubernetes Engine (GKE)
    6. 8 Installing the Stratos Web Console
    7. 9 Eirini
    8. 10 Deploying SUSE Cloud Application Platform Using Terraform
    9. 11 Setting Up a Registry for an Air Gapped Environment
    10. 12 SUSE Private Registry
  4. III SUSE Cloud Application Platform Administration
    1. 13 Upgrading SUSE Cloud Application Platform
    2. 14 Configuration Changes
    3. 15 Creating Admin Users
    4. 16 Managing Passwords
    5. 17 Accessing the UAA User Interface
    6. 18 Container Memory Limits and Requests
    7. 19 Cloud Controller Database Secret Rotation
    8. 20 Rotating Automatically Generated Secrets
    9. 21 Backup and Restore
    10. 22 Service Brokers
    11. 23 App-AutoScaler
    12. 24 Integrating CredHub with SUSE Cloud Application Platform
    13. 25 Buildpacks
  5. IV SUSE Cloud Application Platform User Guide
    1. 26 Deploying and Managing Applications with the Cloud Foundry Client
  6. V Troubleshooting
    1. 27 Troubleshooting
  7. A Appendix
  8. B GNU Licenses
Navigation
Deployment, Administration, and User Guides › SUSE Cloud Application Platform Administration › Accessing the UAA User Interface
Top
Applies to SUSE Cloud Application Platform 2.1.1

17 Accessing the UAA User Interface

  • File Name: cap_admin_uaa_ui.xml
  • ID: no ID found
17.1 Prerequisites
17.2 Procedure

After UAA is deployed successfully, users will not be able to log in to the UAA user interface (UI) with the admin user and the UAA_ADMIN_CLIENT_SECRET credentials. This user is only an OAuth client that is authorized to call UAA REST APIs and will need to create a separate user in the UAA server by using the UAAC utility.

17.1 Prerequisites

  • File Name: cap_admin_uaa_ui.xml
  • ID: sec-cap-uaa-ui-prereqs

The following prerequisites are required in order to access the UAA UI.

  • cf, the Cloud Foundry command line interface. For more information, see https://docs.cloudfoundry.org/cf-cli/.

    For SUSE Linux Enterprise and openSUSE systems, install using zypper. 

    tux > sudo zypper install cf-cli

    For SLE, ensure the SUSE Cloud Application Platform Tools Module has been added. Add the module using YaST or SUSEConnect. 

    tux > SUSEConnect --product sle-module-cap-tools/15.1/x86_64

    For other systems, follow the instructions at https://docs.cloudfoundry.org/cf-cli/install-go-cli.html.

  • uaac, the Cloud Foundry uaa command line client (UAAC). See https://docs.cloudfoundry.org/uaa/uaa-user-management.html for more information and installation instructions.

    On SUSE Linux Enterprise systems, ensure the ruby-devel and gcc-c++ packages have been installed before installing the cf-uaac gem. 

    tux > sudo zypper install ruby-devel gcc-c++

  • UAA has been successfully deployed.

17.2 Procedure

  • File Name: cap_admin_uaa_ui.xml
  • ID: sec-cap-uaa-ui-procedure

  1. Use UAAC to target your uaa server. 

    tux > uaac target --skip-ssl-validation https://uaa.example.com

  2. Authenticate to the uaa server as admin using the uaa_admin_client_secret set in your kubecf-config-values.yaml file. 

    tux > uaac token client get admin --secret PASSWORD

  3. Create a new user. 

    tux > uaac user add NEW-USER -p PASSWORD --emails NEW-USER-EMAIL

  4. Go to the UAA UI at https://uaa.example.com:2793/login , replacing example.com with your domain.

  5. Log in using the the newly created user. Use the username and password as the credentials.

Chapter 18 Container Memory Limits and RequestsChapter 16 Managing Passwords
Print this page

© 2022 SUSE