Skip to content

Commit af810a3

Browse files
sushantjraosushantjrao
committed
Update howto-use-break-glass-access.md
1 parent d0b2927 commit af810a3

File tree

1 file changed

+6
-3
lines changed

1 file changed

+6
-3
lines changed

articles/operator-nexus/howto-use-break-glass-access.md

Lines changed: 6 additions & 3 deletions
Original file line numberDiff line numberDiff line change
@@ -10,6 +10,7 @@ ms.custom: template-how-to, devx-track-azurecli
1010
---
1111

1212
# Use Method D v2.0 Breakglass Access
13+
1314
Breakglass access using Method D v2.0 is a streamlined approach for administrators to grant secure, emergency access to critical network fabric devices. This guide will walk you through setting up and using Breakglass access, including generating SSH keys, granting permissions, and accessing network fabric devices.
1415

1516
## Generating SSH Keys Using the Nexusidentity Azure CLI
@@ -68,12 +69,14 @@ To start with Breakglass IAM configuration, you will need to set up SSH keys usi
6869
6970
e. During this process:
7071
71-
- If prompted to overwrite keys, press **Enter**.
72+
- If prompted to overwrite keys in token, press **Enter**.
7273
7374
- Select the **Security Key** in the popup window and follow the prompts.
7475
7576
- Enter your **YubiKey PIN** and touch the device when prompted.
7677
78+
- If prompted to overwrite keys- press **Enter**
79+
7780
- If prompted to enter a passphrase, press **Enter**.
7881
7982
f. After successful key generation, you should see:
@@ -84,7 +87,7 @@ To start with Breakglass IAM configuration, you will need to set up SSH keys usi
8487
8588
## Granting break-glass permissions to an Entra user on a Network Fabric
8689
87-
To enable Breakglass access for an Entra user on a network fabric, assign the appropriate roles to the user. Below are the role options and their permissions:
90+
To enable Breakglass access administrator can assign below roles to Entra users on a Network Fabric device.
8891
8992
- **Nexus Network Fabric Service Reader**:
9093
@@ -111,7 +114,7 @@ Once permissions are granted, users can access network fabric devices with their
111114
112115
2. **Use SSH with the `-J` option**:
113116
114-
- The `-J` option enables you to log in through a jump server and access a fabric device directly. This involves authentication through both the jump server and the fabric device using SSH keys.
117+
- The `-J` option enables you to log in through a jump server and access a fabric device directly. This involves authentication first with the jump server and then with the fabric device (using ssh keys).
115118
116119
Use the following command format to access a fabric device:
117120

0 commit comments

Comments
 (0)