You can enable users to create a new user account by clicking New User Registration on the login page of SSPR. You can specify the attributes that are required for registering a new user, also the actions that need to be performed when a new user is created. You can also create multiple profiles for different set of users.
When a new user registration is complete, SSPR generates a random name that is included as an LDAP name, or entry ID in the LDAP directory. You can specify the desired value that should be displayed in the directory as the display name or entry ID by using the LDAP Entry ID Definition setting. The display name, or the entry ID can be name, email address or any other information that is provided in the New User Registration Form.
Perform the following steps:
In Configuration Editor, click Modules > New User Registration.
Click New User Settings then on the right pane select Enabled to enable users to create a new user.
After enabling, users can create a new user by clicking New User Registration on the login page.
Click default.
(Conditional) If you want to create different profiles for different set of users, click Edit List then on the right pane add the profile names to the list by using Add Profile.
SSPR does not allow changing the name of the profile but you can change the display name of the profile for the users.
On the left pane click the required profile, or default depending on your requirement.
Configure the following settings:
|
Setting |
Description |
|---|---|
|
Creation Context |
Specify an LDAP context in which the new users will be created. |
|
New User Agreement Message |
Specify a message to display to user before allowing them to register a new user. You can include HTML tags in this message. |
|
New User Form |
Specify attributes that a user needs to fill while registering a new user. |
|
New User Actions |
Specify the actions the system takes when a user is created. Specify the value in the name=value pair format. You can specify multiple attributes by separating with a comma. You can also use macros. |
|
Delete On Creation Failure |
Select this option to delete the partially created or invalid LDAP account. This setting is used when the new user account creation fails for some reason. |
|
LDAP Entry ID Definition |
Specify the display name, or entry ID that should be included in the LDAP naming attribute for the new registered users. In some directories an LDAP entry is used instead of a username. When this setting is enabled, an entryID or an LDAP entry that includes random characters is generated by default.You must specify macros for this setting. For more information about macros, refer Configuring Macros for Messages and Actions. If you leave this field blank, SSPR does not generate a random username/ entry ID. For example, In the LDAP directory, if you require the display name/ entry ID for the new registered user to be displayed as their email address, specify the value as @User:Email@. |
|
Enable New User Email Verification |
Select this check box if you want to send an email to the new user's email address before the account is created. The new user must verify receipt of the email to complete the account creation. NOTE:You must configure the Email settings to make this option work. For more information about how to configure email settings, see Configuring Email Notification Settings. |
|
Enable New User SMS Verification |
Select this check box if you want to send an SMS to the new user's phone number before the account is created. The new user must verify receipt of the SMS to complete the account creation. NOTE:You must enable SMS to make this option work. For more information about how to configure email settings, see Configuring SMS Notification Settings. |
|
Password Policy Template |
Specify a user of whose password policy template you want to use for the user’s password policy. By default this value is set to TESTUSER, you can replace this with a distinguished name (dn) of a user whose password policy can be used for the specified profile. |
|
New User Minimum Wait Time |
Specify a time in seconds. During a new user creation process, the system waits for this specified time before sending user to the next step. |
|
Display Text |
Specify the profile name that will be displayed to the users. |
Click the Save icon.
NOTE:The proxy user requires additional rights to create new users through the New User Registration module. See, Proxy User Rights.