By default VMware Telco Cloud Service Assurance creates  users like keycloak admin account and Operations UI users like admin, oper, maint in keycloak as native users. These users are pre-provisioned with known passwords during VMware Telco Cloud Service Assurance deployment. To change the default passwords the following steps need to be performed.

Steps for changing keycloak admin user credentials:

1. Login using default admin credentials to keycloak UI @ https://<ingress-service:port>/auth.
2. In order to change the keycloak admin password click on the Master realm, as the admin (keycloak) user is present in master realm.
3. Click Users, then view all users and then select ID of admin user.
4. Click on the Credentials tab. The password can be changed for admin(keycloak) user in this screen. Enter the new Password and Disable the Temporary password option. Finally click on reset password.
5. To validate, Logout and login into keycloak UI with admin user with the updated password.

Steps for changing TCSA application UI user credentials:

1. Login using default admin credentials to keycloak UI @ https://<ingress-service:port>/auth.
2. In order to change the VMware Telco Cloud Service Assurance UI user password click on the NGINX realm, as these native users are present in NGINX realm.
3. Click Users, then view all users and then select ID of relevant user.
4. Click on the Credentials tab. there the password can be changed for the user. Enter the new password and Disable the Temporary password option. Finally click on reset password.
5. To validate, logout and login with the user on VMware Telco Cloud Service Assurance Operations UI.