We always recommend a system administrator defer to the vendor’s official documentation on credential creation. Please follow the vendor’s instructions for configuring the device for access with an ssh key, and then use the Indeni WebGUI to store the Private key in the relevant Credential Profile.
In order for Indeni to run its full set of discovery and interrogation scripts, a SSH user with a role of administrator needs to be used to connect your device. It is highly recommended that a unique Indeni user is created for auditing and security purposes.
Accounts can be locally or externally authenticated by TACACS+, RADIUS, or LDAP servers. Local users are added directly to the device, while remotely authenticated users will need to be mapped (local user account to external login).
There are 3 predefined roles – Admin, Default, and Monitor. The Indeni user needs to be an admin as the role provides access to all command modes, including Standard, Enable, and Configure. Admin users also have access to all commands and all ports. They are also members of all groups.
Users can be created via the H-VUE web interface or via CLI. This article covers the creation of local users via CLI.
Creating Users via CLI
- Log in to the Gigamon GigaVUE device using SSH
- > enable
- # configure terminal
- # username <username> password 0 <password>
- # username <username> role replace admin