Configure passwords

  1. Configure the system password for the root user on the compute nodes. This password can be provided in encrypted or clear text form using the chtab command.

    • Clear text:

      chtab key=system passwd.username=root passwd.password=abc123
    • Encrypted using openssl:

      chtab key=system passwd.username=root passwd.password=`openssl passwd -6 abc123`
  2. Configure the passwords for Management modules of the compute nodes.

    • For OpenBMC managed systems:

      chtab key=openbmc passwd.username=root passwd.password=0penBmc
    • For IPMI/BMC managed systems:

      chtab key=ipmi passwd.username=ADMIN passwd.password=admin
    • For HMC managed systems:

      chtab key=hmc passwd.username=hscroot passwd.password=abc123

      If the username/password is different for multiple HMCs, set the username and password attribute for each HMC node object in xCAT

    • For Blade managed systems:

      chtab key=blade passwd.username=USERID passwd.password=PASSW0RD
    • For FSP/BPA (Flexible Service Processor/Bulk Power Assembly) the factory default passwords must be changed before running commands against them.

      rspconfig frame general_passwd=general,<newpassword>
      rspconfig frame admin_passwd=admin,<newpassword>
      rspconfig frame HMC_passwd=,<newpassword>
  3. If using the xCAT REST API

    1. Create a non-root user that will be used to make the REST API calls.

      useradd xcatws
      passwd xcatws # set the password
    2. Create an entry for the user into the xCAT passwd table.

      chtab key=xcat passwd.username=xcatws passwd.password=<xcatws_password>
    3. Set a policy in the xCAT policy table to allow the user to make calls against xCAT.

      mkdef -t policy 6 name=xcatws rule=allow

    When making calls to the xCAT REST API, pass in the credentials using the following attributes: userName and userPW