The Security page is the location for the internal password administration. REST-API password encryption is supported and enabled by default. 

Encrypted Internal Password Accounts

The Administration > Security page includes administration options for encrypted internal passwords. The installer generates an API access token for REST API and for a Remote Agent. The table below describes each account. 

Master Account

  • Used on the server side, the master account is used to set a cypher key to all other accounts. You can update the password for the master account by clicking Update. If you do so, you will need to update the Webservices API accounts below.

Web Services API Account: RESTAPIACCESS

  • The Webservices API account is used for access to the full API.The username RESTAPIACCESS is set by default. You can update the password for this account by clicking Update. If you do so, you will need to update the encrypted token value in any applications that use the API to post data to this GroundWork server, this includes Cloud Hub.

Webservices API Account: RESTAPIACCESSREADER

  • The Webservices API account is used for read-only access to the API. The username RESTAPIACCESSREADER is set by default. You can update the password for this account by clicking Update. If you do so, you will need to update the encrypted token value in any applications that use the API to read data from this GroundWork server, this does not include any internal GroundWork applications, only custom applications used by external systems.

Remote API Account

  • Remote API account is used for parent-child deployments. It is not used for single-server deployments. You can update the password for this account by clicking Update. If you do so, you will need to change it in the corresponding member servers of the parent-child set.

GDMA Accounts

  • GDMA accounts are used by GroundWork Distributed Monitoring Agent (GDMA) for authentication in registration and plugin downloads. GroundWork allows two accounts to be used simultaneously, so you can transition to a new password on deployed agents that need to register or to download new plugins. See GDMA Accounts.

Related Resources