User Module

This section provides detail on the standard user management module used in Pleasant products. This module is used to manage users, roles, policies and directories.

User Accounts

User accounts can be tied to directories (Active Directory/LDAP) or can be simply local accounts. Accounts that are tied to Active Directory/LDAP always authenticate against the Active Directory/LDAP server, so the password is always in sync.

Integrating with Active Directory/LDAP

For instructions on setting up Active Directory/LDAP, see the Quick Active Directory and OpenLDAP Usage Guide (the guide applies to products other than Password Server as well, with the difference that the Users & Roles menu is typically called the Admin menu in these products).

Managing Users

Users can be managed through the Admin > Manage Users page (Users & Roles > Manage Users for Password Server) by users with administrative permissions. The paragraphs below describe various functions that can be accessed through the Manage Users page.

Enable / Disable Users:

Set Password:

Add Users: 

Import Users from an Active Directory / LDAP Server:

Update User From Directory:

View / Edit User Details: 

Unlock User:

Roles

An application will typically have a fixed set of permissions. Roles are groups of permissions, and a user who is assigned a role will gain all of its associated permissions. A role R1 can have another role R2 as a sub-role, in which case R1 gains all of the permissions associated with R2 along with the permissions it directly possesses.

Managing Roles

Roles can be managed through the Admin > Manage Roles page (Users & Roles > Manage Roles for Password Server) by users who have administrative permissions. The paragraphs below describe various functions that can be accessed through the Manage Roles page.

Adding Roles:

Importing Roles:

Managing Roles:

Policy Administration

The policy administration section, which can be accessed through the Admin > Manage Policies page (Users & Roles > Manage Policies for Password Server) by users who have administrative permissions, consists of two parts: global settings and policies.

Global Settings:

Individual Policies are groups of non-global settings values, and can be applied per-user or per-role.

Managing Policies: