Searching the Help
To search for information in the Help, type a word or phrase in the Search box. When you enter a group of words, OR is inferred. You can use Boolean operators to refine your search.
Results returned are case insensitive. However, results ranking takes case into account and assigns higher scores to case matches. Therefore, a search for "cats" followed by a search for "Cats" would return the same number of Help topics, but the order in which the topics are listed would be different.
Words and Phrases
| Search for | Example | Results |
|---|---|---|
| A single word | cat
|
Topics that contain the word "cat". You will also find its grammatical variations, such as "cats". |
|
A phrase. You can specify that the search results contain a specific phrase. |
"cat food" (quotation marks) |
Topics that contain the literal phrase "cat food" and all its grammatical variations. Without the quotation marks, the query is equivalent to specifying an OR operator, which finds topics with one of the individual words instead of the phrase. |
Using Boolean Operators
| Search for | Operator | Example |
|---|---|---|
|
Two or more words in the same topic |
|
|
| Either word in a topic |
|
|
| Topics that do not contain a specific word or phrase |
|
|
| Topics that contain one string and do not contain another | ^ (caret) |
cat ^ mouse
|
| A combination of search types | ( ) parentheses |
|
- Service Portal Administration Guide
- Service Portal capabilities
- Migrating ESS or SRC to Service Portal
- Migrating Propel to Service Portal
- Service Portal Tips
- Service Portal Custom Themes
- Changing Service Portal Default User Accounts' Passwords
- Encrypt a Password - Service Portal User Accounts
- Change the Service Portal Master Password
- Change the JWT Signing Key
- Set Service Exchange user roles and organizations
- Perform Service Exchange basic configuration
- Verify Service Exchange configuration
- View and manage Service Exchange content packs and adapters
- Change the host name used in an existing Service Portal installation
- Encrypt a password in Service Portal
- Back up and restore Service Portal PostgreSQL databases
- Remotely connect to the Service Portal database
- Change Service Portal initial passwords
- Enable query field autofill for catalog item user options
- Adjust the field weight for IDOL search
Change Service Portal initial passwords
Service Portal defines a number of initial passwords (for example, initial passwords for users and a keystore file in the out-of-box system). To ensure the best security, Service Portal provides a "propeld.yml.example" file, which can be used to change the initial passwords in your production environment.
Note After changing the passwords, you need to run a passwords.yml playbook so that your new passwords take effect.
Service Portal initial passwords
The following table provides a list of passwords whose initial values can be changed.
| Password category | Password names |
|---|---|
| DB users |
|
| OS users |
postgres |
| IdM users |
|
| RabbitMQ | rabbitmq |
| Keystore | keystore |
-
Your new passwords must use the following format: <password name>:"<password value>". For example:
admin:"1Qaz2wsx"
-
Each password value must be longer than 6 characters. and must not contain the following YAML special characters: :{}[],&*#?|-=!%@\. However, this is NOT an exhaustive list, and we strongly recommend using alphanumeric characters for your new passwords.
- Before running the passwords.yml playbook, make sure that all of the passwords listed above are present in the group_vars/propeld.yml file and have a non-empty value. Do not comment out or delete any of these passwords.
- Make a note of your new password values, because you may need them in the future if you want to change them again. For example, your own keystore password.
The following paragraphs describe the steps for two installation modes of Service Portal: single instance deployment, and distributed (clustered) deployment.
Change initial passwords for a single instance deployment
To do this, follow these steps:
-
Specify your passwords:
-
Run the following commands:
# cd /opt/hp/propel/contrib/propel* # cp -a group_vars/propeld.yml.example /group_vars/propeld.yml # cp -a passwords/group_vars/propeld.yml.example passwords/group_vars/propeld.yml
-
Specify your passwords in the propeld.yml file:
# vi passwords/group_vars/propeld.yml
-
-
Update the hosts.default file:
# cp -a inventory/hosts.example inventory/hosts.default # vi inventory/hosts.default
Update the content as follows:
[lb] <Service Portal host FQDN> [propel] <Service Portal host FQDN> [db] <Service Portal host FQDN> [propeld:children] propel [propel_shared_src:children] propel
Note You must replace <Service Portal host FQDN> with the fully qualified domain name of your Service Portal server host.
-
Change to the passwords directory:
# cd passwords
-
Run the passwords.yml playbook either as the "root" user or the "propel" user:
Note It takes more time to run the playbook as the "propel" user than as the "root" user.
-
As the "root" user:
# ansible-playbook passwords.yml -u root
-
As the "propel" user:
# su - propel # ssh-keygen -t rsa -f ~/.ssh/id_rsa # ssh-copy-id propel@<Service Portal host FQDN> # ansible-playbook passwords.yml -c paramiko --ask-become-pass -u propel 2>&1 | tee password.out
-
Change initial passwords for a distributed deployment
For a distributed deployment, you run the playbook on the load balancer node.
To do this, follow these steps:
-
Specify your passwords:
-
Run the following commands:
# cd /opt/hp/propel/contrib/propel* # cp -a passwords/group_vars/propeld.yml.example passwords/group_vars/propeld.yml
- Specify your passwords in the passwords/group_vars/propeld.yml file.
-
-
Before running the passwords.yml file, make sure that the databases are working well.
-
Check that both the master db and slave db have a status value of 2
# sudo -u postgres psql -h <VIP of DB> -p 9999 -c "show pool_nodes"
-
Check that the database sync data is not zero (0):
# sudo -u postgres psql -h <FQDN of master db> -p 5432 -c 'select sent_location,replay_location from pg_stat_replication'
-
Make sure that the master db is not in recovery by running the following command (the command should return a value of "f"):
# sudo -u postgres psql -h <FQDN of master db host> -p 5432 -c 'select pg_is_in_recovery()'
-
Check that the slave db is in recovery by running the following command (the command should return a value of "t"):
# sudo -u postgres psql -h <FQDN of slave db host> -p 5432 -c 'select pg_is_in_recovery()'
-
-
Run the passwords.yml playbook either as the "root" user or as the "propel" user:
-
As the "root" user:
Tip The highlighted commands can be omitted if you have already run them before on the master node.
# ssh-keygen -t rsa -f ~/.ssh/id_rsa # ssh-copy-id root@<LB node host FQDN> # ssh-copy-id root@<application node 1 FQDN> # ssh-copy-id root@<application node 2 FQDN # ssh-copy-id root@<master DB node FQDN> # ssh-copy-id root@<slave DB node FQDN> # cd passwords/ # ansible-playbook passwords.yml -u root 2>&1 | tee password.out -
As the "propel" user:
# ansible-playbook passwords.yml -c paramiko --ask-become-pass -u propel 2>&1 | tee password.out
-
We welcome your comments!
To open the configured email client on this computer, open an email window.
Otherwise, copy the information below to a web mail client, and send this email to ovdoc-ITSM@hpe.com.
Help Topic ID:
Product:
Topic Title:
Feedback: