The discovery-manager
service uses default credentials that are provided during Bare Metal Orchestrator deployment for automatic discovery of devices on the network. Before more devices can be auto-discovered or manually onboarded, you must add the device's default login credentials to the Bare Metal Orchestrator file called cred.yaml. You can edit or delete the default credentials using the Bare Metal Orchestrator command line interface or the web UI.
Bare Metal Orchestrator uses the default credentials in the cred.yaml file to connect to the server's BMC and to the switch's management interface. Default passwords are encrypted and stored as secrets. Bare Metal Orchestrator regularly polls the secrets to check for new and changed secrets.
The default maximum number of server credentials supported for device discovery is five.
Example cred.yaml file with five default credentials defined:
credentials:
- username: username1
password: password1
- username: username2
password: password2
- username: username3
password: password3
- username: username4
password: password4
- username: username5
password: password5
MAX_DEFAULT_CRED
attribute as an environment variable in Ubuntu. The maximum supported MAX_DEFAULT_CRED
value is 20. During device discovery, Bare Metal Orchestrator tries using each credential in the cred.yaml file until the successful credential is found. If, for example, the fourth credential is the right one, the fifth credential is not attempted.
If a successful set of credentials to connect to a device cannot be found, Bare Metal Orchestrator marks that device as unable to onboard and the device is not onboarded.