4.2.6. Authentication Parameters
The adminpw
parameter is used to set the password for the admin
user. The value provided must already be hashed. All hashing schemes supported by the shadow password mechanism are supported. The recommended way to hash a password for use with this parameter is to run the following command:
# openssl passwd -1
The openssl
command will prompt for the password to use. A hashed representation of the password will be returned which can be used as the adminpw
value.
The rootpw
parameter is used to set a temporary root
password. A password change is forced the first time root
logs on to the system. The value provided must already be hashed. All hashing schemes supported by the shadow password mechanism are supported. The recommended way to hash a password for use with this parameter is to run the following command:
# openssl passwd -1
The openssl
command will prompt for the password to use. A hashed representation of the password will be returned which can be used as the rootpw
value.
The root
password is not set by default and is not supported unless enabled at the request of Red Hat support.
The rhevm_admin_password
parameter sets a root
password and enables SSH password authentication. The value provided must already be hashed. All hashing schemes supported by the shadow password mechanism are supported. The recommended way to hash a password for use with this parameter is to run the following command:
# openssl passwd -1
The openssl
command will prompt for the password to use. A hashed representation of the password will be returned which can be used as the rhevm_admin_password
value.
Setting this parameter has the side-effect of enabling SSH password authentication, which is unsupported unless enabled at the request of Red Hat support. We recommend disabling SSH password authentication after initial configuration is complete.
The ssh_pwauth
parameter is used to select whether or not password authentication is enabled for SSH connections. Possible values are 0
(disabled) and 1
(enabled). The default value is 0
.
Example 4.23. Enabling SSH Password Authentication
SSH password authentication is disabled by default and is not supported unless enabled at the request of Red Hat support.