Versions Compared

Old Version 2

changes.mady.by.user Chooi San Chong

Saved on

compared with

New Version 3

changes.mady.by.user Chooi San Chong

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Users with the Execute permission can only view the Users.

Users Table

When users with Write permission for Access Controller are on the Access Controller dashboard, the logged in user will see a list of Users displayed in the Users Table.

...

Access Controller dashboard button configuration for users with Execute permission

Adding a New User

To Add a User:

  1. Click on the New User button.
  2. Fill in the details according to the description below and click Save button. 

...

SettingDescription

Enable

Check to enable the user's predefined access rights. Leaving this unchecked will result in the user not being able to login.

Username

Enter the name of the user. Valid characters are: A-Z, a-z, 0-9, '-' and '_'.

Note
titleNote!

A username must be unique. This also applies if you use an external authentication method, such as LDAP or SSO.


Full Name

Enter a descriptive name of the user.

Email

Enter the user's e-mail address. This address will be automatically applied to applications from which e-mails may be sent.

Validity PeriodCheck to enable the user's validity period for access to the system. Once the validity period for the user is over, the user will be disabled but not removed from the users list. This is so the user can be enabled again if needed.
FromFrom Date. User is allowed to login from this Date.
ToTo Date. User is allowed to login until this Date.
SuccessorA successor must be defined for when you want to remove the user that has ownership of configuration objects. The ownership of the configuration will be moved to whichever user is set as this user's successor.
Allow access through SCIMCheck to enable access through SCIM API.  Refer to SCIM(3.2) for more information.

Password

Enter a password for the user account.

Note
titleNote!

The password is required when executing certain mzcli commands, so you should take into consideration the special characters used by bash and we do not recommend the use of these characters as part of your password. These characters are $, \, /, |, *, &, space and any other special characters used by bash. For a better understanding of the characters not recommended to be included in your password, refer to https://mywiki.wooledge.org/BashGuide/SpecialCharacters.


Verify Password

Re-enter the password.

Default Group

Set as default group for the user. By default, this group will have read, write and execute permissions for new configurations created by the user.

Member Groups

The user is registered as a member of the specific group.  An user is allowed to be a member for multiple access groups.


Edit User

To Edit a User:

  1. Click on the Edit button at the end of the row of the user you want to edit.
  2. Update the fields and click the Save button.

...

Access Controller - Edit user screen - SSO users

Delete User

To delete a User:

  1. Click on the Delete button at the end of the row of the user you want to remove.
  2. On the confirmation dialog, click Delete to continue deletion.

...

Access Controller - Delete confirmation dialog

Change Password

To change password for a user:

...

Access Controller - Change Password screen

View User

The View button is displayed instead of the Edit button when the logged in user only has the Execute permission for Access Controller.  All fields in the View user screen will be disabled.

...