Sicura Logo
Guides
Upgrades
Running Sicura Console
RPM Installation
Known Issues
Introduction
Installation
Commands
Container Installation
Configuration
Security
Collector
Experimental
Plugins
Account Configuration
Database
Sidebar
Profiles
Infrastructure
Administration
Scheduling
Reports
How To
Use the API
Enforce Compliance
Custom Profiles
Sicura Logo
Menu
To discover more about Sicura, head over to our website.
Visit website
Guides
No items found.
Categories
No items found.
Home
Documentation
Configuration

Account Configuration

Notice: All of the following config options can be set in /etc/sicura/sicura-console.yaml

Configuring the Administrator Account

Sicura Console creates this default account with full admin privileges:

Username: admin
Password: password

It is highly recommended to change the default username and password. You can also set a default admin token for the default administrative user to better facilitate using the REST API from systems like Puppet.

Changing the Default Password

Passwords in the config file are only stored as crypt(3)-style salted hashes. In order to make it easier to generate, sicura-console contains a helper flag that will take a plain text password and return the hash suitable for the configuration file:

sicura-console -e ‘password’

And then add the output to /etc/sicura/sicura-console.yaml

main.default_admin_password: '$5$7c03659ec01eab77$RB.C4ovajCc9m/JL2.oGX02OlpgMqJmejI72FutgbM5'

Changing the Default Username

It is also best practice to change the default ‘admin’ username to be something site specific:

main.default_admin_username: "sicura_root_admin"

Setting the Default Admin Token

The default authentication token is used to interact with the REST API without an account.

Notice: The default admin token is set to null and will not be usable until set.

main.default_admin_token: "mYxiQo0JCoVdGCZOwLzs"

Security

This article provides configuration options for the Sicura Console, including disabling remediation, changing cryptographic settings, and configuring SSL termination.

Read Article

Collector

This article explains how to configure the Sicura Console Collector, including pruning report data and enabling legacy versions.

Read Article

Experimental

This article describes an experimental configuration option to improve simultaneous use of the console via request threading.

Read Article

Plugins

This article provides information on the Sicura Console, including its plugins, configuration options, and instructions for setting up notification and authentication providers.

Read Article

Account Configuration

This article provides instructions on how to configure the administrator account for Sicura Console.

Read Article

Database

This article provides instructions and information on configuring the database connection for the Sicura Console.

Read Article
To discover more about Sicura, head over to our website.
Visit website
© 2023 Sicura