Creating a user

You can create local and LDAP users. Credentials of local users are stored in the orchestrator database. LDAP user credentials are stored on the remote server. If you want LDAP users to be able to log in to the orchestrator web interface using their credentials, you must first create an LDAP connection that the orchestrator uses to connect to the remote server, and then create your LDAP users or LDAP user groups.

To create a user:

  1. In the menu, go to the Users section.

    The user management page is displayed. The Users tab, which is selected by default, displays the table of users.

  2. Click + User.
  3. In the displayed settings area, in the Source drop-down list, select the user type:
    • Local. Default value. If this value is selected in the Password and Password confirmation fields, enter the password of the user. The password must contain at least one uppercase Latin letter (A–Z), one lowercase letter (a–z), one numeral, and one special character. Password length: 8 to 50 characters. To see the entered password, you can click the show icon .
    • LDAP
  4. In the Username field, enter the user name of the user. The remote server user name is specified in the user@domain or domain\user format.
  5. In the Role drop-down list, select the role of the user:
    • Administrator
    • Tenant
  6. In the Permissions drop-down list, select the created access permission that you want to assign to the user. By default, the user gets the Full access permission, which grants full access to the orchestrator web interface.
  7. If you want to enable two-factor authentication for the user, select the Two-factor authentication check box. This check box is cleared by default. The user must complete two-factor authentication the next time the user logs in to the orchestrator web interface.

    You cannot enable two-factor authentication for an individual user if two-factor authentication is disabled for all users.

  8. If you want to create a confirmation request every time the user performs an action, select the Request confirmation is required check box. By default, the check box is cleared and the user can perform actions without confirmation.
  9. In the First name field, enter the first name of the employee.
  10. In the Last name field, enter the last name of the employee.
  11. If necessary, enter additional information about the user:
    1. In the Email field, enter the email address.
    2. In the Description field, enter a brief description of the user.
  12. Click Create.

The user is created and displayed in the table. By default, the user is blocked.

You must unblock the user to grant that user access to the orchestrator web interface.

Page top