You can safeguard sensitive data in MetroÆ by encrypting files with MetroÆ's encryption tool. See the steps below for instructions on how to encrypt credentials.yml. It uses Ansible's vault encoding in the background. More details about the vault feature can be found in documentation provided by Ansible.
In your MetroÆ deployment folder, create or edit the credentials.yml to store credentials required for various Nuage components. This file will be encrypted.
To encrypt credentials.yml, run the following command:
encrypt_credentials.py [deployment_name]
The default deployment name is default if not specified. This command will prompt for master passcode to encrypt the file and will also prompt for confirming passcode.
Note: All user comments and unsupported fields in the credentials file will be lost.
While running MetroÆ commands you can supply the MetroÆ passcode via prompt or by setting an environment variable
metroae <workflow> [deployment_name]
This command prompts you to enter the master passcode that you used to encrypt the credentials file. Alternatively, if you have the environment variable METROAE_PASSWORD set to the right passcode, MetroÆ does not prompt for the passcode.
Ask questions and get support via the forums on the MetroÆ site.
You may also contact us directly.
Outside Nokia: [email protected]
Internal Nokia: [email protected]
Report bugs you find and suggest new features and enhancements via the GitHub Issues feature.
You may also contribute to MetroÆ by submitting your own code to the project.