Managing users

Users are the base-level entity in BMC Release Process Management (BRPM). Users access the system by logging in.

Based on group assignments, each user can have different roles for different applications and their environments. For example, in Application_1, a user has the Deployer role for one environment and Coordinator role for another environment, while in Application_2, the same user has the Requestor role for all environments.

When you create a new user and do not assign the user to a group, the user is assigned to the default group.

When you use LDAP group mapping, LDAP users  are automatically added to the mapped groups and not to the default group after the first login. For more information, see Creating LDAP group mapping.

You can receive email notifications when you create or edit user accounts. Ensure that the appropriate notification template is active in System > Settings > Notification Templates. For more information, see Managing notification templates.

This topic contains the following procedures:

To create a user

1. Log on to the BMC Release Process Management application.

2. Go to System > Users.

3. Click Add New User at the right side of your screen.

4. Enter new user information using the following guidelines:

   Option	Information to enter
   First Name (required)	First name of the user
   Last Name (required)	Last name of the user
   Email (required)	Email address of the user
   Login (required)	Name that the user will use to log in to the system.
   Password (required)	Password that the user will use to log in to the system. New users, who are managed by BRPM, must change their password when they first log in. The Password and Confirm Password fields are displayed only if Default Authentication is enabled for the logged-on user. This is not applicable when you are using external authentication. For more information, see Specifying general settings. Important The password must contain 8 through 128 characters and must not contain more than two identical characters consecutively. The password must also contain one character from at least three of the following character types: Uppercase characters (A–Z) Lowercase characters (a–z) Digits (0–9) Special characters: ~!@#$%^&*_-+=`|\(){}[]:;"'<>,.?/ Existing users must reset their password by using the password reset rake task.
   Confirm Password (required)	User password again
   Contact number	Telephone number of the user
   Permanent or Contractor	Employee status of a user This setting is used only for reporting.
   Max Allocation	Estimated time allocated to the user for completing assigned tasks This information is used only for reporting and does not affect any user functions.
   Location	Location where the user is operating You can create new locations by navigating to Environment > Metadata > Manage Lists > Locations.
   Time Zone	Time zone of the user.
   Groups	Click Add Group. In the Select Groups dialog box, select the groups to assign to the user. When you have finished, click Select Groups.

5. Click Create User.

To edit a user

1. Go to System > Users.
2. In the Actions column, click Edit for the user that you want to modify.

3. Make your changes and click Update User when finished.
   You must make sure that the user password must satisfy the password creation conditions.

   Important

   Manual LDAP group assignments are not affected by LDAP group mapping. Only LDAP group assignments are overwritten at each user login. For more information, see Creating LDAP group mapping.

To make a user inactive

1. Go to System > Users.

2. In the Actions column, click Make Inactive for the appropriate user.

   Important

   If you make a user inactive, you cannot select that user when you create a request, step, or plan.

To unlock a user

If a user tries to log on to the BRPM UI with incorrect credentials, after five unsuccessful attempts, your user account is locked and the following error message appears:

Your account is locked due to repeated failed login attempts

After a user account gets locked, one cannot access the application by the UI or by using the REST APIs. Only administrators or roles to which the Unlock User permission is assigned can unlock a user account. You can only unlock an active user. If the user is inactive, you must first make the user active before unlocking the user account.

1. Go to System > Users.
   A lock icon appears against the locked username.
2. In the Actions column, click Unlock.
   This unlocks the user account and the lock icon is no longer displayed.

To change a password

To change or reset the local user password, do the following steps:

1. On the BMC Release Process Management server, go to the command prompt.

   cd <BRPM_INSATALL_HOME>/bin
   . ./setenv.sh
   cd ../releases/yourCurrentVersion/RPM/portal.war/WEB-INF/

2. Run the following command: 

   jruby -S rake app:reset_password RAILS_ENV=production

3. When prompted, enter the username for which you want to reset the password. Enter the new password.

   Re-enter the password to confirm it.

   

   Important

   The Password and Confirm Password fields are displayed only if Default Authentication is enabled for the logged-on user.

4. The password is now reset.