CentOS Hardened Image

This section contains information about the hardened image that is distributed to customers as a platform that is pre-configured as a hardened environment ready to run the CA API Developer Portal.
apip42
This section contains information about the hardened image that is distributed to customers as a platform that is pre-configured as a hardened environment ready to run the CA API Developer Portal.
The following CentOS OVA version images are available to customers:
The CentOS 7 OVA Version images are available for download on the CA API Developer Portal Solutions & Patches page.
Image Version
Filename
Notes
CentOS 7 OVA Version 2 Image 
API Developer Portal Virtual CentOS 4.2.9.1.ova
Available starting in CA API Developer Portal version 4.2.9.1
CentOS 7 OVA Version 1 Image
PI Developer Portal Virtual CentOS 4.2.2.ova
Upgrading to CentOS 7 OVA Version 2 Image
recGreen.png
CentOS 7 OVA Version 2 Image is the recommended hardened image. It requires CentOS 7.5.
Be aware of the following consequences of upgrading to the version 2 image:
  • The default username for the system is now
    centos
    . Previously, the default username was "portal". This change
    maintains alignment with the AMI platform. The default password is still
    7layer
    .
  • The number of required CPU cores increased from 4 to 8 to address performance.
  • Additional memory is required.
For more details, see the CentOS 7 OVA Version 2 Image.
The CentOS 7 OVA Version 2 Image contains the following updates and improvements:
  • Requires CentOS 7.5 that includes numerous security fixes not available in CentOS 7.4.
  • Hard drive capacity increased to 500 GB.
  • The 
    /home
     partition size increased to 20 GB.
  • The host 
    ssh
     keys are removed during image creation, so new host 
    ssh
     keys are created when the OVA is first booted. This mitigates the possibility of MITM (man in the middle) attacks, because the host private keys cannot be known in advance and are not shared with other servers built from the same OVA image.
  • The filesystem has been changed from 
    ext4
     to 
    xfs
    .
  • Swap is disabled.