This article describes local user management on the Corsa Security Orchestrator (CSO).
Predefined Local User
A predefined, local user named admin exists on the Corsa Security Orchestrator (CSO) by default. The admin user is a perpetual, read-write user that cannot be deleted. The admin user plays a significant role when setting up the Corsa Security Orchestrator.
The admin user factory default password is password. Corsa Security recommends changing this password as part of the set up of the Corsa Security Orchestrator.
Adding a User
To Add a User, select 'Authentication' from Global Settings. Then select 'Add a User' and you will be presented with the form as shown below.
Complete the form noting a few field descriptions:
Role
read-write
Corsa Security Orchestrator read-write users are not limited in any way throughout the CSO web interface.
read-only
Corsa Security Orchestrator read-only users can view everything but can not enact any change whatsoever with the exception of changing their own password.
Console and SSH login
These toggles are used to grant CSO command line access.
The CSO provides a limited command line through its operating system (OS) that can be used to set up the CSO and be used by Corsa Security support if and when it is needed. Note that this command line interface is a limited version of the CSO and is not equivalent to its web interface.
Access to this command line should be heavily restricted!
If you are unsure how to best set the following fields then choose the default No.
Console Login
The Console Login toggle can explicitly grant the user the right to login to the the CSO command line through its OS console (tty1) via the host hypervisor browser console.
SSH Login
The SSH Login toggle explicitly grants the user the right to access the CSO command line through its OS secure shell (SSH).
Edit and Delete a User