4.5 Enabling New User Registration

You can enable users to create a new user account by clicking New User Registration on the login page of SSPR. You can specify the attributes that are required for registering a new user, also the actions that need to be performed when a new user is created.

When a new user registration is complete, SSPR generates a random name that is included as an LDAP name, or entry ID in the LDAP directory. You can specify the desired value that should be displayed in the directory as the display name or entry ID by using the LDAP Entry ID Definition setting. The display name, or the entry ID can be name, email address or any other information that is provided in the New User Registration Form.

Perform the following steps:

  1. In Configuration Editor, click Modules > New User Registration.

  2. Click View > Always Show Advanced Settings to see and configure the advanced settings.

  3. Configure the following settings:

    Setting

    Description

    Enable New User Registration

    Select this check box to enable users to create a new user.

    After enabling, users can create a new user by clicking New User Registration on the login page.

    Creation Context

    Specify an LDAP context in which the new users will be created.

    New User Agreement Message

    Specify a message to display to user before allowing them to register a new user. You can include HTML tags in this message.

    New User Form

    Specify attributes that a user needs to fill while registering a new user.

    New User Actions

    Specify the actions the system takes when a user is created. Specify the value in the name=value pair format. You can specify multiple attributes by separating with a comma. You can also use macros.

    LDAP Entry ID Definition

    Specify the display name, or entry ID that should be included in the LDAP naming attribute for the new registered users. In some directories an LDAP entry is used instead of a username.

    When this setting is enabled, an entryID or an LDAP entry that includes random characters is generated by default.You must specify macros for this setting. For more information about macros, refer Section 3.2, Configuring Macros for Messages and Actions.

    If you leave this field blank, SSPR does not generate a random username/ entry ID.

    For example, In the LDAP directory, if you require the display name/ entry ID for the new registered user to be displayed as their email address, specify the value as @User:Email@.

    Enable New User Email Verification

    Select this check box if you want to send an email to the new user's email address before the account is created. The new user must verify receipt of the email to complete the account creation.

    NOTE:You must configure the Email settings to make this option work. For more information about how to configure email settings, see Section 3.7, Configuring Email Notification Settings.

    Enable New User SMS Verification

    Select this check box if you want to send an SMS to the new user's phone number before the account is created. The new user must verify receipt of the SMS to complete the account creation.

    NOTE:You must enable SMS to make this option work. For more information about how to configure email settings, see Section 3.8, Configuring SMS Notification Settings.

    New User Password Policy Template

    Specify a user of whose password policy template you want to use for the user’s password policy.

    For example, if the value is TESTUSER, the configured test user's password policy is used. If the value is blank, then the configured local password policy is used.

    Delete On Creation Failure (Advanced)

    Select this option to delete the partially created or invalid LDAP account. This setting is used when the new user account creation fails for some reason.

    New User Minimum Wait Time

    Specify a time in seconds. During a new user creation process, the system waits for this specified time before sending user to the next step.

  4. Click Actions > Save.

NOTE:The proxy user requires additional rights to create new users through the New User Registration module. See, Proxy User Rights.