Follow the steps in Table 10-1 to configure the Create portlet.
Table 10-1 Steps to Configure the Create Portlet
Step |
Task |
Description |
---|---|---|
1 |
Decide if the default Create User or Group feature meets your needs. |
If it does, then you do not need to take any further action; otherwise complete the remaining steps. |
2 |
Define the types of objects that you want to allow users to create. |
Add the objects and attributes to the directory abstraction layer. For more information, see Section 1.2.2, Directory Abstraction Layer. |
3 |
Determine how you want users to access this new portlet. |
Do you want users to launch this portlet from an existing or a new page? Which users can access the portlet and the page? For more information about pages, see Section 6.0, Page Administration. |
4 |
Specify the users that have access to the page and the portlet instance. |
Edit the page security and add the users to the list. For more information on restricting user access to pages, see Section 6.0, Page Administration. Edit the portlet instance to change security. For more information on restricting user access to portlets, see Section 7.0, Portlet Administration. Do you want anonymous users to access this portlet? For more information on setting up the Create portlet specifically for anonymous access, see Section 10.4, Configuring the Create Portlet for Self-Registration. |
5 |
Set preferences for the portlet. |
Preferences let you define:
For more information, see Section 10.3, Setting Preferences. |
6 |
Test. |
Verify that the objects are created and that the attributes are populated properly. |
7 |
Establish the proper effective rights in eDirectory™ for your users. |
Make sure the users have sufficient rights to create the object. |
Objects that can be created and attributes that can be populated by users of the Create portlet must be defined in the directory abstraction layer, as described in Table 10-2.
Table 10-2 Settings for the Directory Abstraction Layer
Definition Type |
Property |
Value |
---|---|---|
entity |
|
Selected. |
|
Selected. If it is not selected, the entity does not display in the list of entities that can be created. |
|
|
Section 10.4, Configuring the Create Portlet for Self-Registration. Specify a valid Identity Vault container. If you do not assign a container, the user is prompted to select one. The user is allowed to select any container beginning with the root container specified during the User Application installation. For anonymous users, it is recommended that you specify a . If you do not, then you must also modify the security setting for the , as described in |
|
|
: Specify the entity’s naming attribute. This shows up in the Create portlet as the Object ID. You can specify different text to display by using the . NOTE:Because the naming attribute is defined in this way, you do not need to add it to the directory abstraction layer as a separate attribute. |
|
|
Selected, if the entity type requires a password on create. If the Create portlet is configured to create users and you want to assign the users to an iManager password policy, then you must also assign this container to the same iManager password policy. This ensures that users created in the User Application are automatically assigned to the default iManager password policy. By default, anyone who has access to the Create Users and Groups action and has Trustee rights to the OU can create users and assign the initial password. When the new user first logs in, he or she is redirected to the Change Password page to modify the initial password. You can change the default behavior via the preference.For more information on this preference, see Section 10.3, Setting Preferences. For more information on the Change Password page, Section 5.3.1, About Password Management Features. |
|
attribute |
|
Selected. If enabled or viewable are not selected (false), the attribute cannot be used by the portlet. |
For more information on setting up the abstraction layer, see Section 1.2.2, Directory Abstraction Layer.