After you import a host into a bastion host, you must configure the host account for the host. This way, the account of the host is managed by the bastion host. After you configure the host account for the host, O&M engineers can log on to the host by using the bastion host and perform O&M operations. This topic describes how to configure the host account for a host, modify the account settings of a host, and delete the host account from a host.
Configure the host account for a host
Log on to the console of a bastion host. For more information, see Log on to the console of a bastion host.
In the left-side navigation pane, choose .
On the Hosts page, configure the host account for a host.
Configure the host account for a host
Find the host for which you want to configure the host account and click Create Host Account in the Actions column.
In the Create Host Account panel, configure the parameters such as Protocol, Logon Name, and Authentication Type. Then, click Create.
NoteYou can click Verify to check whether the username and password that you specified for the account are valid. For more information about how to resolve password errors, see What do I do if an error is returned during password verification for a new host account in Bastionhost?
Configure host accounts for multiple hosts
Select the hosts for which you want to configure host accounts.
In the lower part of the host list, choose
.In the Add Account dialog box, configure parameters such as Authentication Type, Protocol, and Logon Name. Then, click OK.
NoteIf you set the Protocol parameter to SSH when you configure the host accounts for a host, you can turn on Enable Only SFTP Permission. If you turn on Enable Only SFTP Permission, SSH-based logon is disabled for the host account. Proceed with caution.
By default, the Allow Access to Hosts by Using Unauthorized Host Accounts option is selected. If a user does not have the permissions to access a host by using a host account, the user can find and select a host for which the USER parameter is unspecified. Then, the user can manually enter the username and password of the host to access and perform O&M operations on the host. If this option is cleared, a user who does not have the permissions to access a host by using a host account cannot log on to the host. For more information about how to clear the option, see Configure O&M settings.
Modify the account settings of a host
Log on to the console of a bastion host. For more information, see Log on to the console of a bastion host.
In the left-side navigation pane, choose .
On the Hosts page, find the host whose account settings you want to modify and click the name of the host.
On the Host Account tab, find the host account whose settings you want to modify and click the logon name of the account.
In the Edit Host Account panel, modify the account settings and click Save.
Delete a host account
If you no longer require a host account, perform the following steps to delete the account:
Log on to the console of a bastion host. For more information, see Log on to the console of a bastion host.
In the left-side navigation pane, choose .
On the Hosts page, find the host whose account you want to delete and click the name of the host.
On the Host Account tab, select the host account that you want to delete and click Delete below the host list.
In the message that appears, click Delete.