You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Copy file name to clipboardExpand all lines: articles/operator-nexus/howto-use-break-glass-access.md
+8-8Lines changed: 8 additions & 8 deletions
Display the source diff
Display the rich diff
Original file line number
Diff line number
Diff line change
@@ -1,6 +1,6 @@
1
1
---
2
2
title: How to use Method D v2.0 secure break-glass access
3
-
description: Process of using Method D v2.0 Breakglass access
3
+
description: Process of using Method D v2.0 break glass access
4
4
author: sushantjrao
5
5
ms.author: sushrao
6
6
ms.service: azure-operator-nexus
@@ -9,13 +9,13 @@ ms.date: 11/04/2024
9
9
ms.custom: template-how-to, devx-track-azurecli
10
10
---
11
11
12
-
# Use Method D v2.0 Breakglass Access
12
+
# Use Method D v2.0 break glass access
13
13
14
-
Breakglass access using Method D v2.0 is a streamlined approach for administrators to grant secure, emergency access to critical network fabric devices. This guide walks you through setting up and using Breakglass access, including generating SSH keys, granting permissions, and accessing network fabric devices.
14
+
Break glass access using Method D v2.0 is a streamlined approach for administrators to grant secure, emergency access to critical network fabric devices. This guide walks you through setting up and using break glass access, including generating SSH keys, granting permissions, and accessing network fabric devices.
15
15
16
16
## Generating SSH Keys using the Nexusidentity Azure CLI
17
17
18
-
To start with Breakglass IAM configuration, you need to set up SSH keys using the Nexusidentity extension. Make sure you have the following prerequisites installed and updated.
18
+
To start with break glass IAM configuration, you need to set up SSH keys using the Nexusidentity extension. Make sure you have the following prerequisites installed and updated.
19
19
20
20
### Prerequisites
21
21
@@ -87,13 +87,13 @@ To start with Breakglass IAM configuration, you need to set up SSH keys using th
87
87
88
88
## Granting break-glass permissions to an Entra user on a Network Fabric
89
89
90
-
To enable Breakglass access administrator can assign below roles to Entra users on a Network Fabric device.
90
+
To enable break glass access, administrator can assign below roles to Entra users on a Network Fabric device.
91
91
92
92
- **Nexus Network Fabric Service Reader**:
93
93
94
94
- Allows the user to execute show commands on fabric devices.
95
95
96
-
- Does not permit access to configuration mode.
96
+
- Doesn't permit access to configuration mode.
97
97
98
98
- **Nexus Network Fabric Service Writer**:
99
99
@@ -105,11 +105,11 @@ Once these roles are assigned, the corresponding username and public SSH key wil
105
105
> If a subscription owner assigns an user, the Network Fabric Service Reader or Writer role at the subscription scope, this role assignment will be inherited by all Network Fabric instances. Consequently, the user will be granted the privileges associated with the built-in role across all Network Fabric instances.
106
106
107
107
> [!Note]
108
-
> Breakglass user accounts are reconciled every 4 hours. For immediate reconciliation, open a support ticket with the network fabric support team.
108
+
> break glass user accounts are reconciled every 4 hours. For immediate reconciliation, open a support ticket with the network fabric support team.
109
109
110
110
## 3. Break-glass access to Network Fabric device
111
111
112
-
Once permissions are granted, users can access network fabric devices with their FIDO-2 hardware token (for example, YubiKey). Follow the steps below to use Breakglass access.
112
+
Once permissions are granted, users can access network fabric devices with their FIDO-2 hardware token (for example, YubiKey). Follow the steps below to use break glass access.
0 commit comments