Creating a user account for the application web interface
You can create user accounts with the Senior security officer, Security officer, and Security auditor roles.
To create a user account for the application web interface:
Log in to the web interface with the application administrator account.
In the window of the application web interface, select the Settings section, Users subsection.
Click Add.
This opens the New user window.
If necessary, disable the user account using the Status toggle switch.
By default, the account is enabled.
If the user account is enabled, the user is allowed to gain access to the application web interface. If the user account is disabled, the user is prohibited from gaining access to the application web interface.
Under Authentication type, select one of the following options:
KATA user account.
In this case, to connect to the application web interface, the user must enter the user name and password that were configured when the account was created.
Domain user account.
In this case, to connect to the application web interface, the user does not have to enter the user name and password; the user is authenticated with the domain account.
If you have selected the Domain user account authentication type, note that the user will not be able to log in to the application web interface with a different user account.
In the Role drop-down list, select one of the following roles:
Senior security officer
Security officer
Security auditor
If you select KATA user account:
In the User name field, enter a user name for the account you want to create.
The user name must satisfy the following requirements:
Must be unique in the list of user names (case-sensitive).
Must contain no more than 32 characters.
Can contain letters A–Z, a–z, digits 0–9, hyphens (-), and underscores (_).
Must begin with a letter (A–Z or a–z).
In the New password field, enter a user password that will be used to access the web interface.
The password must satisfy the following requirements:
Must not be completely or substantially the same as the user name
Must not contain dictionary words, popular combinations of letters, or examples of a keyboard layout (for example, Qwerty or passw0rd).
Must contain at least 8 characters.
Must contain at least three types of characters:
Uppercase character (A–Z).
Lowercase character (a–z).
Number.
Special character.
As you enter your password, the application checks your password to make sure it meets basic requirements. The final check is performed after you click the Add button. Even if the preliminary check shows that the password satisfies the requirements, the final check may reject the password, displaying an error message in the application web interface. In that case, you need to take into account the error information and come up with a different password.
In the Confirm password field, re-enter the user password that will be used to access the web interface.
If you selected Domain user account, in the User name field, enter the user's domain name.
If you are using the distributed solution and multitenancy mode, in the Access section, configure access rights:
Turn on the SCN web interface toggle switch to allow the user to access not only the web interface of this PCN server, but also to web interfaces of all available SCN servers.
To the right of the Tenants setting title, select check boxes for one or more tenants to whose web interfaces you want to grant access.
You can use the Select all and Clear all links to select or unselect all tenants.