automation-suite
2021.10
false
Automation Suite Installation Guide
Last updated Aug 26, 2024

Accessing Automation Suite

Enabling kubectl

Before running any kubectl commands, make sure to enable kubectl. This allows you to run commands for retrieving passwords and configuration details for the cluster.

To enable kubectl, run the following command:

sudo su -
export KUBECONFIG="/etc/rancher/rke2/rke2.yaml" \
&& export PATH="$PATH:/usr/local/bin:/var/lib/rancher/rke2/bin"sudo su -
export KUBECONFIG="/etc/rancher/rke2/rke2.yaml" \
&& export PATH="$PATH:/usr/local/bin:/var/lib/rancher/rke2/bin"

Managing Certificates

Important: The installation process generates self-signed certificates on your behalf. These certificates will expire in 90 days, and you must replace them with certificates signed by a trusted Certificate Authority (CA) as soon as installation completes. If you do not update the certificates, the installation will stop working after 90 days.

If you try to access the cluster with a web browser, and the certificates are not from a trusted CA, then you will see a warning in the browser. You can rectify this by importing and trusting the cluster SSL certificate on the client computer running the browser.

To manage certificates, take the following steps:

  1. To retrieve the current certificate, run the following command:
    kubectl get secrets/istio-ingressgateway-certs -n istio-system \
    -o "jsonpath={.data['ca\.crt']}" | echo $(base64 -d)kubectl get secrets/istio-ingressgateway-certs -n istio-system \
    -o "jsonpath={.data['ca\.crt']}" | echo $(base64 -d)
  2. To update certificates, see:

Accessing Automation Suite general interface

Note: You need to accept the self-signed certificate in the web browser to be able to access a cluster that is still configured with self-signed certificates.

The general-use Automation Suite user interface serves as a portal for both organization administrators and organization users. It is a common organization-level resource from where everyone can access all of your Automation Suite areas: administration pages, platform-level pages, product-specific pages, and user-specific pages.

To access Automation Suite, take the following steps:

  1. Go to the following URL:

    https://${CONFIG_CLUSTER_FQDN}

  2. Switch to the Default organization.
  3. The username is orgadmin.
  4. Retrieve the password using the following command:
    kubectl get secrets/platform-service-secrets -n uipath \
    -o "jsonpath={.data['identity\.hostAdminPassword']}" | echo $(base64 -d)kubectl get secrets/platform-service-secrets -n uipath \
    -o "jsonpath={.data['identity\.hostAdminPassword']}" | echo $(base64 -d)
    Note:

    Using the same command to retrieve the organization admin and the host admin passwords is by design.

    This is because the two passwords are initially the same. If Change password on the first login is set to Required at the host level, the organization administrator must set a new password when they log in for the first time.

Accessing host administration

The host portal is for system administrators to configure the Automation Suite instance. The settings that you configure from this portal are inherited by all your organizations, and some can be overwritten at the organization level.

To access host administration, take the following steps:

  1. Go to the following URL:

    https://${CONFIG_CLUSTER_FQDN}

  2. Switch to the Host organization.
  3. The username is admin.
  4. Retrieve the password using the following command:
    kubectl get secrets/platform-service-secrets -n uipath \
    -o "jsonpath={.data['identity\.hostAdminPassword']}" | echo $(base64 -d)kubectl get secrets/platform-service-secrets -n uipath \
    -o "jsonpath={.data['identity\.hostAdminPassword']}" | echo $(base64 -d)
    Note:

    Using the same command to retrieve the organization admin and the host admin passwords is by design.

    This is because the two passwords are initially the same. If Change password on the first login is set to Required at the host level, the organization administrator must set a new password when they log in for the first time.

Accessing ArgoCD

You can use the ArgoCD console to manage installed products.

To access ArgoCD, take the following steps:

  1. The URL is the following: https://alm.${CONFIG_CLUSTER_FQDN}.
  2. The username is admin.
  3. To access the password, run the following command:
    kubectl get secrets/argocd-admin-password -n argocd \
    -o "jsonpath={.data['password']}" | echo $(base64 -d)kubectl get secrets/argocd-admin-password -n argocd \
    -o "jsonpath={.data['password']}" | echo $(base64 -d)
    Note: Make sure that all services are enabled. For example, if you want to enable the handwriting service in Document Understanding, check the parameter setting for it and make sure that the value is set to true.

Accessing Rancher

Automation Suite uses Rancher to provide cluster management tools out of the box. This helps you manage the cluster and access monitoring and troubleshooting.

See Rancher documentation for more details.

See Using the monitoring stack for more on how to use Rancher monitoring in Automation Suite.

To access the Rancher console, take the following steps:

  1. Go to the following URL: https://monitoring.${CONFIG_CLUSTER_FQDN}.
  2. The username is admin.
  3. To access the password, run the following command:
    kubectl get secrets/rancher-admin-password -n cattle-system \
    -o "jsonpath={.data['password']}" | echo $(base64 -d)kubectl get secrets/rancher-admin-password -n cattle-system \
    -o "jsonpath={.data['password']}" | echo $(base64 -d)

Accessing service database connection strings

You can access the database connection strings for each service as follows:

kubectl -n uipath get secret aicenter-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret orchestrator-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret automation-hub-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret automation-ops-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret insights-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret platform-service-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret test-manager-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decodekubectl -n uipath get secret aicenter-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret orchestrator-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret automation-hub-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret automation-ops-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret insights-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret platform-service-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode
kubectl -n uipath get secret test-manager-secrets -o jsonpath='{.data.sqlConnectionString}' | base64 --decode

Was this page helpful?

Get The Help You Need
Learning RPA - Automation Courses
UiPath Community Forum
Uipath Logo White
Trust and Security
© 2005-2024 UiPath. All rights reserved.