During Cloud.Red Service on-boarding, the following changes will be required on F5 hosts

  • The on-boarding process will create the “wtit_ao_admin” local user account for API and application interfacing with the host**
  • The on-boarding process will create the “wtit_admin” local user account on the hosts for remote SSO login (when allowed/enabled)**
  • Additional “wtit_client_*” local user accounts will be created when enrolling in client remote access.

If enrolled in monitoring, the following changes will be required

  • Remote logging will be updated, adding the Cloud.Red on-premises virtual machine as a Remote Syslog Server.
  • SNMP trapping will be updated, adding the Cloud.Red on-premises virtual machine as an SNMP (v2c) trap destination.
  • SNMP access will be updated, adding the Cloud.Red on-premises virtual machine as an SNMP (v2c) polling agent. An additional SNMP community will be added if required.
  • On BIGIPs, Logic will be added to inject a special “node up” message to the logs every 1 minute to use as a heartbeat.

NOTE: There is logic built into this solution to ensure WTIT user accounts remain active and in place in the event of a reboot or code upgrade.

NOTE: A Password Rotation Policy will be put in place for both WTIT user accounts rotating every 30 days. The passwords will be stored securely and encrypted in our database.

Agent Connectivity RequirementsRequired changes for NGINX