Creating a user account for the application web interface

You can create user accounts with the Senior security officer, Security officer, and Security auditor roles.

To create a user account for the application web interface:

1. Log in to the web interface with the application administrator account.
2. In the window of the application web interface, select the Settings section, Users subsection.
3. Click Add.

   This opens the New user window.

4. If necessary, disable the user account using the Status toggle switch.

   By default, the account is enabled.

   If the user account is enabled, the user is allowed to gain access to the application web interface. If the user account is disabled, the user is prohibited from gaining access to the application web interface.

5. Under Authentication type, select one of the following options:
   • KATA user account.

     In this case, to connect to the application web interface, the user must enter the user name and password that were configured when the account was created.

   • Domain user account.

     In this case, to connect to the application web interface, the user does not have to enter the user name and password; the user is authenticated with the domain account.

     If you have selected the Domain user account authentication type, note that the user will not be able to log in to the application web interface with a different user account.

   The KATA user account and Domain user account fields are available if Active Directory integration is configured.

6. In the Role drop-down list, select one of the following roles:
   • Senior security officer
   • Security officer
   • Security auditor
7. If you select KATA user account:
   1. In the User name field, enter a user name for the account you want to create.

      The user name must meet the following requirements:

      • Must be unique in the list of user names (case-sensitive).
      • Must contain no more than 32 characters.
      • Can contain letters A–Z, a–z, digits 0–9, hyphens (-), and underscores (_).
      • Must begin with a letter (A–Z or a–z).
   2. In the New password field, enter a user password that will be used to access the web interface.

      The password must satisfy the following requirements:

      • Must not be the same as the user name.
      • Must not contain dictionary words, popular combinations of letters, or examples of a keyboard layout (for example, Qwerty or passw0rd).
      • Must contain at least 8 characters.
      • Must contain at least three types of characters:
        • Uppercase character (A–Z).
        • Lowercase character (a–z).
        • Number.
        • Special character.
   3. In the Confirm password field, re-enter the user password that will be used to access the web interface.
8. If you selected Domain user account, in the User name field, enter the user's domain name.
9. In the Access section, configure access rights:
   1. Turn on the SCN web interface toggle switch to allow the user to access not only the web interface of this PCN server, but also to web interfaces of all available SCN servers.
   2. To the right of the Tenants setting title, select check boxes for one or more tenants to whose web interfaces you want to grant access.

      You can use the Select all and Deselect all links to select or unselect all tenants.

10. Click Add.