This section explains how to register user accounts of infrastructure administrators.
Use the following procedure to register a user account on the [Resource] tab of the ROR console:
Check the user information registered in the directory service.
If user registration to the directory service is to be performed
Check if user information is registered in the directory service. If the user information is registered in the directory service, it cannot be registered in Resource Orchestrator.
If user registration to the directory service is not to be performed
Check if user information is registered in the directory service. If the user information has not been registered in the directory service, register it before proceeding further.
This operation is not necessary when using internal authentication in Basic mode.
In the ROR console, select [Settings]-[User Accounts].
The [User Accounts] dialog is displayed.
Click <Add>.
The [Add User Account] dialog is displayed.
Set the following:
The name must start with an alphabetic character and can be up to 32 alphanumeric characters long (including underscores, "_", hyphens, "-", and periods, ".").
Specify a user ID registered in the directory service.
When using authentication by directory services, or when using Single Sign-On
Specify a user ID registered in the directory service.
When using internal authentication
The name must start with an alphabetic character and can be up to 32 alphanumeric characters long (including underscores, "_", hyphens, "-", and periods, "."). Please note that user names are case-sensitive.
This is only displayed when registering the user in the directory service, or for Basic mode, when internal authentication is used.
Specify a string using up to 64 alphanumeric characters or symbols.
Enter a string using up to 16 alphanumeric characters or symbols.
Specify the email address of the user.
Specify a string using up to 64 alphanumeric characters or symbols.
Select the user group to configure for the user account from the already created user group.
Select the scope of access to set for the user account.
Select the role to set for the user account.
Enter a label for the user account.
Enter a maximum of 32 characters.
Enter any comments for the user group.
Enter a maximum of 256 characters.
Click <OK>.
The user account is created.
When using Resource Orchestrator user operations to register users in the directory service, check the settings of the operation definition file for directory service operations (ldap_attr.rcxprop). For details on the definition file for directory service operations, refer to "8.6.1 Settings for Tenant Management and Account Management" in the "Operation Guide CE". For details on the rcxadm user create command, refer to "7.1 rcxadm user" in the "Reference Guide (Command/XML) CE".
Note
When not registering the user in the directory service, and using the application process, add all infrastructure administrators and dual-role administrators to the IflowUsers group.
For information on how to add those administrators, refer to "19.2.1.2 Adding an infrastructure administrator/dual-role administrator to IflowUsers Group" in the "Setup Guide CE".
When users of Resource Orchestrator log in to ServerView Operations Manager, user definitions are necessary for ServerView Operations Manager. For details on how to add user definitions for ServerView Operations Manager, perform settings for Single Sign-On referring to the following manual:
"12.2 Set up ServerView Operations Manager and the Directory Service Environment" in the "Design Guide CE"
