21.1 About Credentials Resources

Credentials resources facilitate authentication for the associated components. The credential access information and password are stored securely in the PlateSpin Transformation Manager database. They are transmitted over secure connections when PTM uses them for discovery or migration activities. Passwords are obscured in the interface.

NOTE:Credentials resource settings are not integrated with your directory password management system. If the password changes in your network environment or for accounts in cloud provider locations, you must manually update the password stored for the related Credential resource in Transformation Manager.

The Credentials resource enables you to track the following information for authentication credentials:

Name

A name for the Credentials resource that is unique to your transformation project.

The name must begin with a letter or number. It can contain only letters, numbers, and the following special characters: space, hyphen, underscore, apostrophe, percent, ampersand, comma, and period.

Organization

The parent organization for the project.

Project

The parent project for the credential.

Description

(Optional) A brief description of the credential. This text appears by default in the Credentials list.

Credential Type

The intended usage of the credential:

After you specify the Credential Type, the following credentials require additional information:

Amazon Web Services

An Amazon Web Services credential requires two unique identifiers for login:

Access Key ID

The Access Key ID of the AWS account you will use for target VMs in the AWS cloud infrastructure. For example: AKIAIOSFODNN7EXAMPLE.

Secure Access Key

The Secure Access Key that enables PlateSpin Migrate to use the AWS APIs when it replicates or migrates workloads on your behalf to VMs in the AWS cloud infrastructure. For example: wJalrXUtnFEMI/K7MDENG/bPxRfiCYEXAMPLEKEY.

NOTE:As a security best practice, we recommend that administrators regularly rotate access keys for AWS Identity and Access Management (IAM) users. Before you rotate keys, ensure that no migration workflow is in progress. See Rotating Access Keys in the AWS Identity and Access Management User Guide.

Linux Administrator
Username

The logon user name of Linux administrator to use for communications with the workload.

The user name is case sensitive. For the local user account, use root or a root-level user name for the workload that has been properly configured to use sudo. See KB Article 7920711.

Password

The password for the specified Linux user name.

Microsoft Azure

A Microsoft Azure credential requires the following identifiers for login:

Subscription ID

The Subscription ID of the Azure account you will use for target VMs in the cloud infrastructure.

Application ID

The Application ID that enables PlateSpin Migrate to use the Azure APIs when it replicates or migrates workloads on your behalf to VMs in the Azure cloud infrastructure.

Username

The Azure account user name for the specified Subscription ID.

Password

The password for the specified Azure user name.

NOTE:Migrations fail if the user password expires or you modify the password in Azure. Ensure that you update the password stored for the username in the Credential resource each time after you update it in Azure.

Migration Server
Username

The logon user name of a domain administrator or local administrator to use for communications with the server that hosts the migration software (such as PlateSpin Migrate).

Provide the user name exactly as it is expected by the intended operating system or authentication system.

Password

The password for the specified user name.

VMware vCenter Server
Username

The logon user name to use for communications with the VMware vCenter server.

Provide the user name exactly as it is expected by the intended operating system or authentication system. For example: administrator@vc1.example.com

Password

The password for the specified user name.

Windows Administrator
Username

The logon user name of a domain administrator or local administrator to use for communications with the workload.

Windows user names are case insensitive. Provide the user name exactly as it is expected by the intended operating system or authentication system. For example:

  • For domain member: CORPDOM\username

  • For workgroup member: WORKGROUP\username

  • For a local user account: username

Password

The password for the specified Windows user name.

Windows Domain
Username

The logon user name of a domain administrator or workgroup administrator to use for communications with the workload.

Windows user names are case insensitive. Provide the user name exactly as it is expected by the intended operating system or authentication system. For example:

  • For domain member: CORPDOM\username

  • For workgroup member: WORKGROUP\username

Password

The password for the specified Windows user name.