Skip to main content
Top
Review meshIQ Products (G2.com)

User Management

Some features described in this article are available starting with meshIQ Secure/Control Center version 12.1 and greater.
For a quick overview of what's new or changed, visit the meshIQ Highlights page for a version-by-version breakdown.  

Jump to Section:
Version 12.x and Later
Version 11.3 and Earlier

Version 12.x and Later

The User Management feature in Control Center allows you to manage users directly from the Control Center UI, including adding, modifying, and deleting users, as well as configuring LDAP.

Use the following options based on your requirement:

  • Add a User – Adds an existing domain user to Control Center.
  • Add a Domain User – Creates a new user in both the domain and Control Center in a single step from the Control Center UI.
    To learn more, see Add a Domain User | Add a User.

Adding a user to a group simplifies the process of assigning permissions. Once assigned to a group, the user inherits the permissions associated with that group.

You can also assign roles to users who require additional or specific permissions. For example, if a user needs more permissions than those granted through a group, you can assign one or more roles to provide access to additional functionality.

This distinction helps you choose whether to onboard an existing user or create a new one directly within the application.

You see Working with Tables in the Customizing the meshIQ Control Center interface for more information about managing columns.

Jump Ahead

Add a Domain User

  1. On the left toolbar, select User Management.
  2. Click the Add Domain User icon AddUsrBt.png. The Domain User Create Window opens.
  3. On the General tab, select the user type:
    • Native
    • LDAP
    • Kerberos
  4. Enter the user's Name (required) and a Description of this user record (optional).
    • If Native or Kerberos is selected, enter the following:
      • Password
      • Verify password
    • If LDAP is selected:
      • Password fields are not available because authentication is managed by the LDAP server.
      • User credentials are validated against the configured LDAP system.
    • (Optional) To configure password expiration, select Password expires in and specify the number of days.
    • (Optional) To require the user to change the password at the next logon, select User must change password at next logon.
    • (Optional) You can enable Audit this account to track user activity.
    • (Optional) Configure account lock settings:
      • Specify the number of minutes in Lock out for.
      • Specify the number of failed attempts.
    • To prevent others from working on this record, enable the Locked option. Default records are locked to indicate they should not be changed.
    • To prevent the user from logging in, enable the Disabled option. You can use this option to temporarily disable a user instead of deleting the record.
  5. To add a user to a group, select the User Groups tab. To find a group in the list, enter some or all of the term you want to filter by in the Search for users field. Both columns are immediately filtered by the term that you have entered.
    In the Non-assigned User Groups column, select the check boxes for the groups to which this user belongs. 
    Click the single right arrow Right arrow.png to move the selected groups to the Assigned Groups column. 
    Click the double right arrow Double right arrow.png to add the user to all groups.  
    If you've assigned a group by mistake, select it and click the single left arrow left arrow.png to remove it from the Assigned Groups column.  
    To remove all groups, click the double left arrow Double left arrow.png.
  6. To assign one or more roles to a user, click the Roles tab. Select the checkbox for the roles that carry the permissions that you want the user to have.
  7. For each role, define the specific areas to which you want to grant access. Click the expand button Expand.png to choose the server group that you want to provide access to; select the checkbox then click the expand button for the server group to provide access to an object group.

For a quick, read-only view of only the roles that are assigned to this user, you can hide other roles: click the View Mode slider Disable slider.png. The slider turns blue Enable slider.png to indicate that View Mode is on.  In this mode, you can only view roles, server groups, and object groups; you cannot add or remove them.

  1. Click Save to create the domain user.

Add a User

  1. On the left toolbar, select User Management.
  2. Click the Add User Add buttin.png icon. The User Create Window opens.
  3. On the General tab, enter the user's Name (required) and a Description of this user record (optional).
    • To prevent others from working on this record, select the Locked option and click Save. Default records are locked to indicate they should not be changed.
    • To set up users ahead of time, you can enter their records but select the Disabled option. This prevents them from logging on before the system is set up and ready to use. You can also use this option to disable a user rather than deleting them.
    • The System-Generated option is automatically selected if the user was created through import of a list of users from LDAP or some other system resource/application, rather than being manually entered in the Control Center application. These users are read-only. They cannot be changed or deleted.
  4. To add a user to a group, select the User Groups tab. To find a group in the list, enter some or all of the term you want to filter by in the Search for users field. Both columns are immediately filtered by the term that you have entered.
    In the Non-assigned User Groups column, select the check boxes for the groups to which this user belongs. 
    Click the single right arrow Right arrow.png to move the selected groups to the Assigned Groups column.  
    Click the double right arrow Double right arrow.png to add the user to all groups.  
    If you've assigned a group by mistake, select it and click the single left arrow left arrow.png to remove it from the Assigned Groups column.  
    To remove all groups, click the double left arrow Double left arrow.png.
    User create user group tab.png
  5. To assign one or more roles to a user, click the Roles tab. Select the checkbox for the roles that carry the permissions that you want the user to have.
  6. For each role, define the specific areas to which you want to grant access. Click the expand button Expand.png to choose the server group that you want to provide access to; select the checkbox then click the expand button for the server group to provide access to an object group.

For a quick, read-only view of only the roles that are assigned to this user, you can hide other roles: click the View Mode slider Disable slider.png. The slider turns blue Enable slider.png to indicate that View Mode is on.  In this mode, you can only view roles, server groups, and object groups; you cannot add or remove them.

  1. Click Save.

Import LDAP Users

  1. On the User Management page, click Import LDAP users in the top-right corner. The Import LDAP Users dialog opens.
  2. Select the LDAP server from the drop-down list and click Load. The list of available LDAP users is displayed.
  3. To find a user in the list, enter some or all of the term you want to filter by in the Search for LDAP users field.
  4. In the Available LDAP users column, select the users that you want to import.
  5. Click the single right arrow Right arrow.png to move selected users to the Selected LDAP users column.
    Click the double right arrow Double right arrow.png to move all users to the Selected LDAP users column.
    Alternatively, drag and drop users from the Available LDAP users column to the Selected LDAP users column.
  6. Click Ok to import the selected users.

Remove unused LDAP users

  1. On the User Management page, click Remove unused LDAP users in the top-right corner. The confirmation dialog opens.
  2. Type DELETE (in all capital letters) in the provided field.
  3. Click Yes, Delete to remove all unused auto-generated LDAP users, or click No, Keep to cancel the action.

Set Password

You can set or reset the password for a domain user after the user is created.

  1. Select the user for whom you want to set the password.
  2. From the Selected menu, choose Set Password
  3. The Reset Password dialog opens.
  4. Enter the new password in the Password field.
  5. Re-enter the password in the Verify password field.
  6. Click Save to update the password.

Preview a User

To preview a user's record, select the checkbox next to the user's name, then click Preview from the Selected menu.

Edit a User

To edit a user's record, select the checkbox next to the user's name. From the Selected menu, click Edit. The User Properties tab opens. 

Update the user information by following the relevant section:

  • Add a User – for users added in Control Center from Enterprise Manager
  • Add a Domain User – for users created directly in Control Center

On the User Groups tab (applicable only for domain users):

  • Select Include LDAP Group Memberships to view and include LDAP groups.
  • Select the LDAP server from the drop-down list.

For the remaining steps, see Add a Domain User.

Delete a User

To delete a user, select the checkbox next to the user's name. From the Selected menu, click Delete.
In the Delete User dialog, type DELETE (in all capital letters) in the provided field.
Then click Yes, Delete to confirm, or No, Keep to cancel the action.
Delete user actin dialog.png

Copy a User

To copy a user's record, select the checkbox next to the user's name, then click Copy from the Selected menu. You can rename the copied record, make any necessary changes, and then click Save.

______________________________________________________________________________________________________________

Version 11.3 and Earlier

The User Management option on the Security Manager menu allows you to add and edit users.

Adding a user to a group simplifies the process of assigning permissions to the user.  Once assigned to a group, the user is granted the permissions assigned to the group.

You can assign roles to users that have unique permissions needs.  For example, if a user requires more permissions than are granted to a group, the user can be assigned one or more roles that provide access to additional functionality.                 

UserMgt.png

Add a new user

  1. On the left toolbar, select Security Manager Security manager button.png > User Management.
  2. Click the add icon AddUsrBt.png.
  3. On the General tab, enter the user's Name (required) and a Description of this user record (optional). 
  • To prevent others from working on this record, select the Locked option and click Save. Default records are locked to indicate they should not be changed.
  • To set up users ahead of time, you can enter their records but select the Disabled option. This prevents them from logging on before the system is set up and ready to use. You can also use this option to disable a user rather than deleting them.
  • The System-generated option is automatically selected if the user was created through import of a list of users from LDAP or some other system resource/application, rather than being manually entered in the security application. These users are read-only. They cannot be changed or deleted.
  1. To add a user to a group, select the User Groups tab.  To find a group in the list, enter some or all of the term you want to filter by in the Search for users field. Both columns are immediately filtered by the term that you have entered.
    In the Non-assigned User Groups column, select the check boxes for the groups to which this user belongs. Click the single right arrow Right arrow.png to add the user to selected groups by moving the groups to the Assigned Groups column. Click the double right arrow Double right arrow.png to add the user to all groups.  
    If you've assigned a group by mistake, select it and click the single left arrow left arrow.png to remove it from the Assigned Groups column.  To remove all groups, click the double left arrow Double left arrow.png.
  2. To assign one or more roles to a user, click the Roles tab. Select the checkbox for the roles that carry the permissions that you want the user to have.
  3. For each role, define the specific areas to which you want to grant access. Click the expand button Expand.png to choose the server group that you want to provide access to; select the checkbox then click the expand button for the server group to provide access to an object group.

For a quick, read-only view of only the roles that are assigned to this user, you can hide other roles: click the View Mode slider Disable slider.png. The slider turns blue Enable slider.png to indicate that View Mode is on.  In this mode, you can only view roles, server groups, and object groups; you cannot add or remove them.

  1. Click Save.

Addnewuser.gif

Preview a User

To preview a user's record, select the checkbox next to the user's name, then click Preview from the Selected menu.

Edit a User

Select the check box for a user's record. On the Selected menu, click Edit. Use the Add a new user instructions above to make changes to the user's record. 

Edit user.png

Delete a User

Select the check box for a user's record. On the Selected menu, click Delete. On the Delete Confirmation dialog, click Yes to delete the user, or No to cancel the delete action.

Delete user.png

Copy a User

To copy a user's record, select the checkbox next to the user's name, then click Copy from the Selected menu. You can rename the copied record, make any necessary changes, and then click Save.