You may require Secure Shell (SSH) access to a Service Instance for troubleshooting, to view log files, or for other purposes.
Data Management for VMware Tanzu does not permit SSH access to a Service Instance by default. To permit a special DMS-created operating system user to access a Service Instance, you or the Provider Administrator must first explicitly enable SSH access to the instance.
When you enable SSH access to a Service Instance, Data Management for VMware Tanzu configures access to the instance for a DMS-created operating system user named tenant-admin
and generates a new password for this user.
Data Management for VMware Tanzu assigns the tenant-admin
user read-only permission to log files residing on the Service Instance.
tenant-admin
must not execute any command that will impact or interfere with services running on the instance.
You share the management of SSH access to a Service Instance for the tenant-admin
operating system user with the Provider Administrator.
tenant-admin
user password.
Connecting to a Service Instance with an SSH Client describes how to obtain the password should it have changed.
Before you enable SSH access to a Service Instance, ensure that:
Perform the following procedure to enable SSH access to a Service Instance:
Select Databases from the left navigation pane.
This action displays the Databases view, a table that lists the provisioned database instances.
Examine the databases listed in the table, identify the instance for which you want to enable SSH access, and navigate to that table row.
Click the database Instance Name.
The database information Details tab displays.
Locate the VM Admin User Details section of the pane, click ACTIONS, and select Enable SSH Access from the drop down menu.
The Enable DB VM SSH dialog displays.
Click CONFIRM.
Data Management for VMware Tanzu initiates the task, generating an operation of type ENABLE_DB_VM_SSH.
Monitor the progress of the task in the Operations tab or in the Database Operations view:
After you enable SSH access to a Service Instance, the instance allows SSH connections from clients running on any hosts with connectivity to the Service Network.
You obtain the IP address and FQDN of the Service Instance from the Server Information section of the Databases instance Details tab:
You obtain the login credentials for the tenant-admin
operating system user from the VM Admin User Details section of the Databases instance Details tab:
(Recall that the tenant-admin
user has read-only permission to log files residing on the Service Instance, and should not execute any commands that impact running services.)
You use the DB IP Address or DB FQDN and the Org Admin User and Org Admin Password credentials to ssh
into the Service Instance. For example:
user@host$ ssh tenant-admin@DBFQDN
password:
When you disable SSH access to a Service Instance, Data Management for VMware Tanzu removes access to the instance from the tenant-admin
user.
tenant-admin
user at any time.
Before you disable SSH access to a Service Instance, ensure that:
Perform the following procedure to disable SSH access to a Service Instance:
Select Databases from the left navigation pane.
This action displays the Databases view, a table that lists the provisioned database instances.
Examine the databases listed in the table, identify the instance for which you want to disable SSH access, and navigate to that table row.
Click the database Instance Name.
The database information Details tab displays.
Locate the VM Admin User Details section of the pane, click ACTIONS, and select Disable SSH Access from the drop down menu.
The Disable DB VM SSH dialog displays.
Click CONFIRM.
Data Management for VMware Tanzu initiates the task, generating an operation of type DISABLE_DB_VM_SSH.
Monitor the progress of the task in the Operations tab or in the Database Operations view: