During Cloud.Red Service on-boarding, the following changes will be required on F5 hosts
  • The on-boarding process will create the “wtit_ao_admin” local user account for API and application interfacing with the host**
  • The on-boarding process will create the “wtit_admin” local user account on the hosts for remote SSO login (when allowed/enabled)**
  • Additional “wtit_client_*” local user accounts will be created when enrolling in client remote access.

If enrolled in monitoring, the following changes will be required
  • Remote logging will be updated, adding the Cloud.Red on-premises virtual machine as a Remote Syslog Server.
  • SNMP trapping will be updated, adding the Cloud.Red on-premises virtual machine as an SNMP (v2c) trap destination.
  • SNMP access will be updated, adding the Cloud.Red on-premises virtual machine as an SNMP (v2c) polling agent. An additional SNMP community will be added if required.
  • On BIGIPs, Logic will be added to inject a special “node up” message to the logs every 1 minute to use as a heartbeat.
NOTE: There is logic built into this solution to ensure WTIT user accounts remain active and in place in the event of a reboot or code upgrade.
NOTE: A Password Rotation Policy will be put in place for both WTIT user accounts rotating every 30 days. The passwords will be stored securely and encrypted in our database.