On the System > Parameters > QR Code Login page of CVM, you can select whether to enable the QR code login service. In the current software version, only DingTalk-based QR code login is supported. After you enable this service, you can click QR Code Login on the login page, and then log in to the system by scanning the QR code. This login method does not require entering any user account or password.
Users of the LDAP authentication method do not support QR code login.
On the top navigation bar, click System.
From the left navigation pane, select Parameters.
Click the QR Code Login tab.
Click Edit, enable the QR code login service, and then configure the parameters as needed.
Click Save.
Type: QR code login type. Only DingTalk is supported in the current software version.
Domain Name: IP address of the authentication server called after CVM obtains user information from DingTalk. The format is http://ip:port or http://ip. Do not enter a slash (/) at the end of the URL. The ip argument represents the real IP address of CVM and the port argument represents the real port number of CVM.
Auth Method: To use a third-party authentication platform for identity authentication and log in to CVM through QR code scanning, you can configure this parameter. For example, you can enter script /vms/auth_method.py -t '%s' -c '%s' to have the third-party authentication platform authenticate user access to CVM.
The first parameter -t represents the key that the third-party authentication platform uses for access to authorization resources.
The second parameter -c is a code value that the third-party authentication platform assigns to CVM. CVM uses this code value to perform user authentication on the third-party authentication platform.
Appkey: Application public key. You can create multiple applications for an enterprise and each application has a unique public key. Public key information is obtained from the DingTalk open platform.
AppSecret: Application private key. You can create multiple applications for an enterprise and each application has a unique private key. Private key information is obtained from the DingTalk open platform.