Configure your user account

The system administrator should log in first and change the passwords and user details.

To change your user password and user details:

1. Click on the username icon at the bottom left of the screen
   
2. Select Edit user
3. Change the Password, enter an Email, a Phone number and an SSH public key, and change other details as required.
   General information
   Advanced
   

Note that you cannot change many of the details of the main cloud administrator account, and you cannot change its role and privileges. However, you can replace the main cloud administrator account  with another equivalent cloud administrator account. You can also edit this user account and other user accounts in Users View.

Your platform may offer or require two-factor authentication (2fa) to improve user login security with an additional authentication code. For platform configuration instructions, see Configure two factor authentication.

Before you begin:

• To use Google Authenticator to obtain the codes, install the Google Authenticator app on your cell phone. 
• To use email authentication to obtain the codes, check that you have a valid email address in your user account on the platform.

To enable two-factor authentication for your user account, do these steps:

1. Click on the user initials or user icon in the lower left corner of the screen, and from the menu, select Two-factor authentication.
2. Select the authentication method and click Enable

3. Copy the Backup codes from the configuration window to a secure place. You can use these codes to log in to the platform if the authentication cycle fails

   The platform will display Backup codes ONCE only

4. Authenticate according to your selected method
   • For Google Authenticator, use the Google Authenticator app on your cell phone to scan the QR code. Google will supply a verification code in the app. During login, the platform will request the Authentication code from the app. 
   • For email, during login, every time you enter your user name and password to log in, a code will be sent to the E-mail address registered in your user account. Enter the Authentication code in the Login dialog

To work with a public cloud region, each enterprise should have its own public cloud account for each cloud provider. All the users in the tenant will work with this same account. 

Before you begin:

1. Obtain credentials to access the cloud provider's API. For Abiquo's basic guides, see Obtain public cloud credentials.  Always check your provider documentation too.

To add public cloud credentials:

1. Go to Users → select and edit enterprise → Credentials → Public
2. Enter the Credentials as described here
   1. Select the Provider: Some providers may require different credentials for groups of regions

   2. Enter Access key ID: Identity to access the cloud provider API

      1. For Azure enter subscription-id#app-id#tenant-id

      2. For Google enter project_id#client_id#client_email#private_key_id

      3. For OCI enter format is tenancy#user#fingerprint

   3. Enter Secret access key

      1. For OCI enter the private key in PEM format.

   
   See GUI Edit enterprise Credentials
3. Click Add account. The platform will validate your credentials with the cloud provider and save them

4. Finish editing the enterprise and click Save

This will add a cloud provider account for a tenant enterprise with access to a public cloud region.

In resellers with Amazon, Azure ARM, and other partner accounts, to create a customer account in the provider and add it to an enterprise in the platform, click the enterprise building Create account button. See Create an account in public cloud for the customer of a reseller

For OAuth applications, users can add applications, display keys, inspect the privileges assigned to the application, and delete the application.

To add an OAuth application:

1. Click on the User name or User icon in the top right-hand corner of the screen to open the Username menu 
2. Select Manage applications
3. Click the + button
4. Enter the Name and Description of the application
   
5. To set the privileges of the application, go to Privileges. By default, all of the user's privileges are selected for the application. We recommend that you go to Privileges and remove any unnecessary privileges
   
6. Click Save

Abiquo will add the new application to the Applications list and display the API key and an API secret key. Copy the API key and API secret key to a secure storage area.