This chapter explains how to manage the user information in Systemwalker Software Configuration Manager.
This product uses a directory service as the repository of user information. The directory service is also used for user authentication.
The content of user operations carried out by the User Information Management command is reflected to the directory service created at the following location:
ou=users,dc=fujitsu,dc=com |
User information is stored in the inetOrgPerson class. The user information stored for each attribute is listed in the table below.
Attribute name | Value | Remarks |
|---|---|---|
objectClass | inetOrgPerson | |
cn | User ID | |
sn | Surname | |
initials | Middle name(s) | |
givenName | Given name | |
userPassword | Password | |
uid | User ID | |
ou | Tenant name | Stores the name of the tenant that the user belongs to. |
o | Company or organization name | |
telephoneNumber | Telephone number | |
Email address | ||
description | Role | One of the following values is set according to the user role:
|
Also, all users are registered as members of the IflowUsers group below.
Group name | Identifier (dn) | Object class |
|---|---|---|
IflowUsers | cn=IflowUsers,ou=Group,dc=fujitsu,dc=com | organizationalUnit |
Information
Requirements to use this product
In addition to users registered using the User Information Management command, directory service user entries that satisfy the following three conditions can be used as users of Systemwalker Software Configuration Manager:
A value is stored in all the following attributes:
cn
uid
sn
givenName
The same value is stored in the following attributes:
cn
uid
The value of the description attribute is one of the following:
administrator
infra_admin
Note
Notes on sharing with another product the directory service used by this product
Ensure that the cn and uid attributes in the directory service have unique values, otherwise you will not be able to log in to the management console.
Users who have not been registered using the User Information Management command and users who do not satisfy the requirements to use this product cannot use the management console.
You cannot perform operations using the User Information Management command for users who have not been registered using the User Information Management command or users who do not satisfy the requirements to use this product.
Note the following when using users of this product on a different product:
Attribute values in the directory service are updated using the values you specified when updating, moving, or changing the password of user information with the User Information Management command.
Deleting a user with the User Information Management command also deletes the user entry from the directory service.
Users and Groups used by this product
This product uses the following users and groups contained in the directory service, and therefore should not be deleted. Also, the following users cannot be used by the user of this product.
User name | Identifier (dn) | Object class | Remarks |
|---|---|---|---|
User for process control | cn=<userForProcessControl>,ou=users,dc=fujitsu,dc=com | inetOrgPerson |
|
Group name | Identifier (dn) | Object class | Remarks |
|---|---|---|---|
AdminRole | cn=AdminRole,ou=Group,dc=fujitsu,dc=com | organizationalUnit | It is created automatically during setup of this product and deleted automatically during unsetup of this product. |
swrba_Exe | cn=swrba_Exe,ou=Group,dc=fujitsu,dc=com | organizationalUnit | |
Role | cn=Role,ou=Group,dc=fujitsu,dc=com | organizationalUnit | |
IflowUsers | cn=IflowUsers,ou=Group,dc=fujitsu,dc=com | organizationalUnit | |
IflowGroups | cn=IflowGroups,ou=Group,dc=fujitsu,dc=com | organizationalUnit |
Refer to the following manual for information on the users registered when building the ServerView Operations Manager single sign-on environment:
"ServerView user management with OpenDJ" in User Management in ServerView
If linked to ServerView Resource Orchestrator
If linked to ServerView Resource Orchestrator, then use it to manage user information - refer to the following manual for details.
"Defining User Accounts" in ServerView Resource Orchestrator Cloud Edition Design Guide.
