You can create users by importing information from your LDAP authentication source. You can import users as System or Organization users. After you import a user, you can assign roles to the user.
On the main navigation bar, click
, then click (in the list).or
On the main navigation bar, click
.If you want to import Organization users, click the
tab, select the target organization for the import, click to display the Edit Organization dialog box, then click (located above the list on the tab).or
If you want to import System users, click
(on the main navigation bar) to display the System Configuration dialog box, click the tab, click the tab, then click .Authenticate to the LDAP directory:
Click the
tab.In the
section, fill in the following fields:Host: Specify the FQDN (fully qualified domain name) or IP address of the host machine running the LDAP server. For example, ldap.mycompany.com or 123.45.67.8.
Port: Specify the TCP port (on the host machine) where the LDAP server is listening for LDAP connections. The standard port for non-SSL connections is 389. The standard port for SSL connections is 636.
Use SSL: If the Cloud Manager Application Server is configured for an SSL connection to the LDAP server, select this option to enable the secure connection.
In the
section, fill in the following fields:DN: Specify an account that has search rights to the directory location from which you want to import users. For example, cn=Administrator,cn=Users,dc=MyCompany,dc=com
Password: Specify the password for the account.
Password Confirm: Confirm the password for the account.
Click
.If the connection is successful, the Test Status is displayed as
. If the connection is not successful, validate the connection information and try again.Import users:
Click the
tab.Click
.When you click
, an new import entry is added to the list. You use the fields below the list to define the entry.In the DN field, use standard LDAP notation (ou=provo,dc=netiq,dc=com) to specify the distinguished name for the target container or object, then click .
If you specify a container, all users located within the container are imported. If you only want to import one user, specify the DN of the user object.
If you specified a container for import, select
.If you specified a container for import, select
if you want to import users located in its subcontainers.Click
.The imported users are added to the
list. Users are identified by the icon.When you have finished importing users, click
or to close the dialog box.Assign roles to the users:
On the main navigation bar, click
.Click the
tab, select the user to whom you want to assign roles, then click .(System user only) Assign system-level roles.
The system-level roles are Approver, Build Administrator, Catalog Manager, Cloud Administrator, and Zone Administrator. These roles can be assigned only to System users.
To assign the Approver, Build Administrator, Catalog Manager, or Cloud Administrator role, click the
tab, click , select the desired roles, then click .To assign the Zone Administrator role, click the
tab, click , select the desired zone, then click .Assign organization-level roles.
The organization-level roles are Approver, Build Administrator, Business Group Viewer, Business Service Owner, Organization Manager, and Sponsor. The Approver and Build Administrator roles can be assigned only to System users. The other roles can be assigned to both System users and Organization users.
Several of the roles can be assigned at the organization, business group, or business service level. For example, you can make a user a Sponsor for a business group, in which case the user can approve requests for business services from that business group only. Or, you can make the user a Sponsor for the organization, in which case the user can approve requests for all business services in the organization.
Click the
tab to add a role at the organization level, click the tab to add a role at the business group level, or click the tab to add a role at the business service level.Click the role that you want to assign
For example, if you selected the
tab and you want to enable the user to create business services for the business group, click .Click
, select the object (organization, business group, or business service) to which you want the role to apply, then click to add it to the list.When you have finished assigning roles to the user, click
.For more information about users and roles, see Section III, User Management.