When using RBAC, some functions may not be accessible.
When using meshIQ Kafka Console's built-in user authentication, administrators can perform user management functions on the administrator screen. Non-administrative users can change some of their own user settings by clicking the circled letter icon in the upper right corner of the screen (the circled letter represents the first letter of their User Name and selecting My Settings).
View users
In the User Management section of the administrator screen, you can view the list of currently created users.
- The Active tab shows the list of currently available users.
- The Locked tab shows the list of users whose accounts are locked and cannot be used (for example, users whose passwords have expired).
Create a user
You can create a new user by clicking Create User at the top right of the user list. The input items are as follows:
- User Name. User name used when logging into the meshIQ Kafka Console™ web UI. Alphanumeric.
- Enter Password/Confirm Password. Password used when logging in. Consists of letters, numbers, and special characters.
- User Tags. Enter metadata about new users in the form of tags. Enter the tag name in the space provided and click Add. The new tag is displayed beneath the Tags field:
- Ignore password policy. Choose whether to ignore the password expiration and validation policies.
- RBAC (Role Based Access Control)
- Authority. Select permissions for each resource. Multiple permissions can be granted. Super Admin, System Admin, Cluster Admin, Cluster Operator, Developer, Development Manager, Development Viewer.
- Cluster resource. Select one of the registered clusters.
- Topic resource. Add a topic (exact name or prefix) to allow access in the cluster.
Click Create.
Edit users
User modification can only be performed by users with Super Admin or System Admin privileges, and changes can be made to all accounts registered in meshIQ Kafka Console.
You can edit users by selecting an account from the user list or by selecting the edit icon to the right of the user.
Change permissions
At the bottom of the user details screen, you can add permissions or remove permissions that have already been granted.
Reset forgotten passwords
The user's password is one-way encrypted and cannot be recovered. But if a user forgets his or her password, it can be reset. You can reset the password by selecting Reset Password from the Actions menu at the top right of the user details page. If you do not enter a password for the user, a random password will be generated and displayed on the screen. Just copy this value and provide it to the user.
Once a user's password is reset, the user must set a new password the next time they log in.
Deactivate (lock) users
If you want to temporarily prevent a user from using meshIQ Kafka Console, you can lock their account instead of deleting it. You can lock a user's account by selecting the lock icon that appears on the right side of the account in the user list or by selecting Lock User from the Actions menu at the top right of the user details screen .
Reactivate users
Deactivated users can be identified in the deactivation list. You can reactivate a deactivated user by selecting the activation icon that appears on the right side of a locked user's account in the list or by selecting Activate User from the Actions menu at the top right of the user details screen.
Delete users
Information for deleted users cannot be recovered.
If you no longer use your account, you can delete it. You can permanently delete a user by selecting the delete icon that appears on the right side of the user account in the list or by selecting Delete User from the Action menu at the top right of the user details screen. All related data will be deleted.