Functional IDs¶
The Plixer Scrutinizer system relies on a number of generic functional accounts/IDs to control access to the environment’s different components and their respective functions.
The following table lists all default functional IDs used by a Plixer Scrutinizer installation:
| System Component | Account/ID | Type | Access Level | Function |
|---|---|---|---|---|
| Operating system | root |
Interactive | Privileged | Provides root access to the Plixer Scrutinizer OS, with unrestricted shell, SSH, and console access |
plixer |
Interactive | Non-privileged | Primary user for the interactive scrut_util CLI utility and provides access to run all Plixer Scrutinizer processes and services |
|
pgbouncer |
Non-interactive | Non-privileged | Used to manage remote database access between nodes, e.g. user/role access, load balancing, etc. | |
postgres |
Non-interactive | Privileged | Used for database operations during deployment | |
apache |
Non-interactive | Privileged | Primary HTTP services user | |
| Database | plixer |
Interactive | Privileged | Primary database role used by application processes for both local and remote access |
postgres |
Non-interactive | Privileged | Used for local database access during deployment, upgrades, and scheduled pg_cron tasks |
|
| Web interface | admin |
Interactive | Privileged | Provides full access to web interface management functions |
Types:
- Interactive - can be used to grant a user all privileges inherent to the ID
- Non-interactive - reserved for internal use by the system and cannot be assigned to users
Access levels:
- Privileged - has elevated permissions, such as superuser or system admin access
- Non-privileged - granted only the access rights required for the ID’s intended function(s)