In the Organization Manager tree view, select an organization, and highlight Users. The users that belong to this organization display in the right pane.
Viewing and updating
a user account
In the right pane, highlight the user name, and click Edit.
You can modify any field that is not dimmed. Click OK to save any changes.
Updating the EPWebServerPlugin password
If you change the EPWebServerPlugin user’s password,
and you plan to use the Web server plug-in, you must update
the password in the default_credential.txt file,
which is installed with your Web server plug-in—see Chapter 11, “Configuring the Web Server Plug-in.”
Managing certificates
For information about how Enterprise Security uses digital certificates to authenticate users, see “Authentication”.
In the right pane, highlight the user name, right-click, and select Manage Certificates. The Manage Certificates dialog box displays the user’s existing certificates.
To add a new certificate, click New. The Register Certificate dialog box displays. Enter one of these values, then click OK:
The name of a base64 X.509 certificate file, or click Browse, and select the file name. By convention, certificate files have a .cer extension.
If you have a certificate installed in Internet Explorer, you can export it, and register it here. To export a certificate:
In Internet Explorer, select Tools | Internet Options.
In the Internet Options dialog box, select the Content tab, then highlight the certificate, and click Export.
In the Certificate Export wizard, select Base-64 Encoded X.509, click Next, then enter a file name for the certificate.
The certificate DN.
The new certificate information displays in the Manage Certificates dialog box.
To view an existing certificate, highlight the row, and click View.
To delete an existing certificate, highlight the row, and click Delete.
Click OK.
You can also manage certificates using the SubjectManagement interface defined in SMAPI. To view the SMAPI documentation, open a browser, and access docs/html/index.html in your Enterprise Security installation.
Moving a user between organizations
In the right pane, highlight the user name, right-click, and select Change Organization. The Change User Organization dialog box displays.
In the To New Organization list, highlight the organization to which you want to move the user, and click OK.
Managing users’ group memberships
Before you can add users to a group, you must create the group—see “Creating a group”.
In the Organization Manager tree view, select the organization, and highlight Users.
In the right pane, highlight the user whose group memberships you want to edit, right-click, and select Edit Group Memberships. The Edit User Group Memberships dialog box displays.
In the left list box, select the organization. The groups that belong to this organization display in the middle list box.
To add the user to a group, highlight the group name, and click Add. The group name displays in the Members Of list box.
Repeat this step for each group to which you want to add this user.
To remove the user from a group, highlight the group name in the Members Of list box, and click Remove.
When you are finished, click OK.
Accessing Portal Studio
To enable users to access all the Portal Studio development
features, grant them the StudioAdmin role.
To restrict Portal Studio users to a subset of the studio features:
Create a custom studio role—see “Creating a role”.
Assign appropriate studio permissions to the role—see “Managing a role’s access permissions”.
Grant the role to your studio users—see “Editing a user’s roles,” below.
Editing a user’s roles
In the right pane, highlight the user name, right-click, and select Edit Roles. The Edit User Roles dialog box displays.
In the left list box, select the organization. The roles that belong to this organization display in the adjacent list box.
The Inherited Roles list box displays the roles that are granted to a group of which the user is a member. The user inherits these roles as a group member.
To grant a role to the user, highlight the role name, and click Add. The role name displays in the Granted Roles list box. The name of the organization to which each role belongs also displays, in parentheses.
Repeat this step for each role you want to grant to the user.
To revoke a role from the user, highlight the role name in the Granted Roles list box, and click Remove.
To save your changes, click OK.
Listing a user’s access permissions
To see which assets a user has permissions to access, and the access types:
In the right pane, highlight the user, right-click, and select List Permissions. The List User Access Permissions dialog box displays each asset that the user has permission to access, the organization in which the asset belongs, and which permissions are assigned.
Changing a user’s password
If you change a user’s password, and the user has a proxy user name and password defined, enter the new password on the Portal Studio AccountInfo tab; then, reenter the proxy user name and password—see “Registering proxy user names and passwords with Portal Studio”.
In the Organization Manager tree view, select an organization, and highlight Users.
In the right pane, highlight the user’s name, right-click, and select Reset Password. The Reset Password dialog box displays.
Enter the new password twice, and click OK.
Deleting a
user account
In the right pane, highlight the user you want to delete.
Right-click, and select Delete User.
Click Yes to confirm the deletion.
