3.1 Registering User Accounts

This section explains how to register user accounts of infrastructure administrators.

Use the following procedure to register a user account on the [Resource] tab of the ROR console:

When using Single Sign-On authentication, confirm the user information registered in the directory service.
- When the user is not to be registered from Resource Orchestrator to the directory service
  When registering user accounts, the specified user accounts are registered in Resource Orchestrator if they are already registered in the directory service.
  If the specified user account does not exist in the directory service, register it in the directory service before proceeding further.
- When the user is to be registered from Resource Orchestrator to the directory service
  When registering user accounts, the specified user accounts are registered both in Resource Orchestrator and in the directory service.
In the ROR console, select [Settings]-[User Accounts].
The [User Accounts] dialog is displayed.
Click the [Add] button.
The [Register User Account] dialog is displayed.
Set the following:
User ID
When using internal authentication, or when user registration to the directory service is to be performed using Single Sign-On authentication
Enter a character string beginning with an alphanumeric character and containing up to 32 alphanumeric characters, underscores ("_"), hyphens ("-"), and periods (".").
When user registration to the directory service is not to be performed using Single Sign-On authentication
Specify a user ID registered in the directory service.
Password (Confirm password)
This item is only displayed when using internal authentication or when user registration to the directory service is to be performed using Single Sign-On authentication.
Specify a string using up to 64 alphanumeric characters or symbols.
E-mail address
Specify the email address of the user.
Specify a string using up to 64 alphanumeric characters or symbols.
User group
Select the user group to configure for the user account from the already created user group.
Scopes/Roles (Optional)
Resource
Select the scope of access to set for the user account.
Role
Select the role to set for the user account.
Label (Optional)
Enter a label for the user account.
Enter a maximum of 32 characters.
Comment (Optional)
Enter any comments for the user group.
Enter a maximum of 256 characters.
Click the [OK] button.
The user account is created.

When using Resource Orchestrator user operations to register users in the directory service using Single Sign-On authentication, check the settings of the operation definition file for directory service operations (ldap_attr.rcxprop). For details on the definition file for directory service operations, refer to "8.6.1 Settings for Tenant Management and Account Management" in the "Operation Guide CE". For details on the rcxadm user create command, refer to "7.1 rcxadm user" in the "Reference Guide (Command/XML) CE".

Note

Specify "all" (no access scope restriction) for the access scope.
When users of Resource Orchestrator log in to ServerView Operations Manager using Single Sign On authentication, user definitions are necessary for ServerView Operations Manager. For details on how to add user definitions for ServerView Operations Manager, perform settings for Single Sign-On referring to the following manual:
- "12.2 Setting Up ServerView Operations Manager and the Directory Service Environment" in the "Design Guide CE"