Credentials resources facilitate authentication for the associated components. The credential access information and password are stored securely in the PlateSpin Transformation Manager database. They are transmitted over secure connections when PTM uses them for discovery or migration activities. Passwords are obscured in the interface.
NOTE:Credentials resource settings are not integrated with your directory password management system. If the password changes in your network environment or for accounts in cloud provider locations, you must manually update the password stored for the related Credential resource in Transformation Manager.
The Credentials resource enables you to track the following information for authentication credentials:
A name for the Credentials resource that is unique to your transformation project.
The name must begin with a letter or number. It can contain only letters, numbers, and the following special characters: space, hyphen, underscore, apostrophe, percent, ampersand, comma, and period.
The parent organization for the project.
The parent project for the credential.
(Optional) A brief description of the credential. This text appears by default in the Credentials list.
The intended usage of the credential:
After you specify the Credential Type, the following credentials require additional information:
An Amazon Web Services credential requires two unique identifiers for login:
The Access Key ID of the AWS account you will use for target VMs in the AWS cloud infrastructure. For example: AKIAIOSFODNN7EXAMPLE.
The Secure Access Key that enables PlateSpin Migrate to use the AWS APIs when it replicates or migrates workloads on your behalf to VMs in the AWS cloud infrastructure. For example: wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY.
NOTE:As a security best practice, we recommend that administrators regularly rotate access keys for AWS Identity and Access Management (IAM) users. Before you rotate keys, ensure that no migration workflow is in progress. See Rotating Access Keys
in the AWS Identity and Access Management User Guide.
The logon user name of Linux administrator to use for communications with the workload.
The user name is case sensitive. For the local user account, use root or a root-level user name for the workload that has been properly configured to use sudo. See KB Article 7920711.
The password for the specified Linux user name.
A Microsoft Azure credential requires the following identifiers for login:
The Subscription ID of the Azure account you will use for target VMs in the cloud infrastructure.
The Application ID that enables PlateSpin Migrate to use the Azure APIs when it replicates or migrates workloads on your behalf to VMs in the Azure cloud infrastructure.
The Azure account user name for the specified Subscription ID.
The password for the specified Azure user name.
NOTE:Migrations fail if the user password expires or you modify the password in Azure. Ensure that you update the password stored for the username in the Credential resource each time after you update it in Azure.
The logon user name of a domain administrator or local administrator to use for communications with the server that hosts the migration software (such as PlateSpin Migrate).
Provide the user name exactly as it is expected by the intended operating system or authentication system.
The password for the specified user name.
The logon user name to use for communications with the VMware vCenter server.
Provide the user name exactly as it is expected by the intended operating system or authentication system. For example: administrator@vc1.example.com
The password for the specified user name.
The logon user name of a domain administrator or local administrator to use for communications with the workload.
Windows user names are case insensitive. Provide the user name exactly as it is expected by the intended operating system or authentication system. For example:
For domain member: CORPDOM\username
For workgroup member: WORKGROUP\username
For a local user account: username
The password for the specified Windows user name.
The logon user name of a domain administrator or workgroup administrator to use for communications with the workload.
Windows user names are case insensitive. Provide the user name exactly as it is expected by the intended operating system or authentication system. For example:
For domain member: CORPDOM\username
For workgroup member: WORKGROUP\username
The password for the specified Windows user name.