Adding Secondary Local Auth Administration Access

Owned by Zane England
Last updated: Sept 29, 2021
2 min read

This setup can be used when the primary authentication is LDAP based to provide backup access incase of LDAP connection issues, Note that this method will use a local Yarnman authentication

Ensure that strong passwords are used for local accounts

  1. Create second Administration Application service

  2. Configure Administration application

    1. Set the service name to Administration App - Local User to identify this is the local auth DB service

    2. Set the node/arm

    3. Set the host to the ip address of the node or 0.0.0.0 to bind to all IP addresses

    4. Set the port - this is the port that will be used to connect to the local admin access in this example 3999 was used

    5. Set the authentication policy as required

  3. Via SSH allow HTTP access to the port defined above adjust the port as set in the administration application configuration

    yarnman@yarnman:~$ sudo ufw allow 3999 Rule added

  4. Verify access to the administration application - Note that https must be used

 

yarnlab website