User's Guide: Logging in

Working in Confidential Computing Manager

In the Fortanix Confidential Computing Manager (CCM), you can perform administration tasks such as signing up, logging in, creating an account, managing your application deployment, assign access, and handle approval requests. You can also view the compute nodes in your cluster and their attestation status, tasks, and audit logs of cluster events. To get started, sign up.

Sign Up

Steps:

  1. Visit https://ccm.fortanix.com/ to get started.
  2. Click the SIGN UP button on the top-right corner of the page. CCMUserguide42.png Figure 1: Sign up
  3. Fill the Sign Up form and enter the necessary details such as Email, First name, Last name, Create password, Retype password. CCMUserguide43.png
    Figure 2: Sign up form
    NOTE
    The minimum password length required is 8 characters (letters, numbers, !, %,$)
  4. Select the check box “I agree to Terms and Conditions and Privacy Policy”.
  5. Select the check box “I’m not a robot” and click SIGN UP. CCMUserguide44.png
    Figure 3: Sign up
  6. Once you sign up, the administrator will receive an email to approve this request. After the administrator approves it, you will receive an email notification regarding the approval of the request.
  7. You will also review an email to verify your email address. Click CONFIRM EMAIL in the email to verify your email. You will be redirected to the CCM UI. Click PROCEED in the CCM UI. CCM_4a.png
    Figure 4: Email confirmed
  8. After signing up, the user can log in successfully to the CCM.

Log In

Prerequisites:

  • Fortanix CCM
  • A user added in Fortanix CCM with relevant permissions to access the functionality of this service.

Steps:

  1. Visit https://ccm.fortanix.com/ 
  2. Enter your E-mail and Password.
  3. If you have set up Single Sign-On (SSO) for your account then click LOG IN WITH SSO. CCMUserguide45.png
    Figure 5: Logging in
    For more details on how to enable SSO using Azure Active Directory refer to Azure AD Authentication Guide.
  4. Click LOG IN to log in to Fortanix CCM.
  5. Once you log in, create an account using the CCM Accounts page to proceed.
    Corvin4.png
    Figure 6: Accounts page To create an account, refer to the “Create Account” section below.

Change Password

Steps:

  1. In the CCM UI, click the drop-down menu associated with the user name on the top-right of the UI.
  2. From the menu, click My profile. Corvin5.png
    Figure 7: My profile
  3. In the My profile page, click the CHANGE PASSWORD button. CCMUserguide48.png
    Figure 8: Change password
  4. Enter the Current Password and type the New Password two times. CCMUserguide49.png
    Figure 9: New password
  5. Click CHANGE PASSWORD button to save changes. 

Create an Account

A CCM account is the top-level container for applications, images, and compute nodes. An account is generally associated with an organization, rather than an individual. Different accounts are fully isolated from each other. A user can either create a new account or join an existing account. To join an account, an administrator of an account needs to invite a user using the user’s email address through the Invite User workflow explained in the next section. The user needs to contact the account administrator to join an existing account. Upon accepting the invitation to join the account, the user will be added to it.

Disable Fortanix CCM Attestation

If you have a server or laptop that is unable to attest to Intel’s IAS attestation service, but you still want Fortanix CCM to pass attestation so that your compute node can be successfully enrolled to Fortanix CCM, you can create an account with the "test-only deployment" policy. This policy allows compute nodes to bypass the IAS attestation service, thereby enabling enrollment of compute nodes that do not fully qualify for the IAS attestation. Refer to step 3 below to bypass IAS attestation.

Prerequisites:

You need to be an account administrator of the account.

Steps:

  1. Once you sign up and log in, you will be taken to the Accounts page. Click ADD ACCOUNT to create a new account. Corvin9.png
    Figure 10: Create an account
  2. Enter a name for the new account and optionally add a custom logo for the account.
  3. To allow compute nodes to bypass Intel's IAS attestation and successfully enroll regardless of attestation failing, click the check box “This is a test-only deployment”.
  4. Click CREATE ACCOUNT to complete the account creation. CCM_IAS_Bypass1.png
    Figure 11: Create account complete
  5. The account is now successfully created. CCM_13a.png
    Figure 12: Account created successfully
  6. Click SELECT ACCOUNT to select the newly created account. Click GO TO ACCOUNT to enter the account and start enrolling the compute nodes and creating applications.
  7. If you disabled the attestation for compute nodes, you would see a warning in the Fortanix CCM dashboard “Test-only deployment: Compute nodes can be enrolled into Fortanix CCM without attesting to Intel’s IAS attestation service”.
      CCM_IAS_Bypass2.png
    Figure 13: Account created successfully
NOTE
The account name and logo can be updated using the CUSTOMIZE option on the accounts page.

CCMUserguide52.png

Figure 14: Customize account

Leave an Account

A user also has the option to leave an account.

Steps:

To leave an account:

  1. Click the overflow menu on the account card. CCMUserguide53.png
    Figure 15: Leave an account
  2. Click LEAVE ACCOUNT to leave an account that you had previously joined.
NOTE

To leave an account, you have to be a user with an editor or viewer role. If you are an administrator of an account, then to leave an account you have to ensure that there is one more user in the account with an administrator role. If you are the only admin of an account, then you can choose to delete the account instead.

Was this article helpful?
0 out of 0 found this helpful