Managing user accounts

On the System tab, Users provides commands for creating and modifying user accounts, as well as a summary list of user accounts, with links for associated groups and roles.

This topic provides the following procedures: 

• To add a new local user account
• To modify an existing user account
• To reset the root password
• To configure user authentication

To add a new local user account

Before adding a new local user acount, make sure you enable the support for the javascript and cookies in your web browser.

1. Click the System tab.
2. From the left menu, select Users.
3. Under the list of accounts to the right, click New User.
    This is only for adding local users. To add new users to the external authentication server, see the authentication server documentation.
4. Enter the user name and password, and click Create.

To modify an existing user account

1. Click the System tab.
2. From the left menu, select Users.
3. To change settings for an existing user account, click the name that you want to edit.
    To change only the account mode, click the Mode link for the account you want to change.
   Local user accounts have one of the following modes:
   • Standard: Typical user
   • Admin: Similar to root, can do anything
   • Report: Can only view Report tab (does not count against licenses)
   • Email: Defines an email address (does not count against licenses)
   • Disabled: Account is disabled 
4. To view the user's groups or roles, or to change the account password, click one of the options in the associated Actions menu.

For each existing user account, the associated Actions menu on the right side identifies the actions that you can take with that account:

To reset the root password

If you forgot the admin passwords, and therefore you cannot log onto the application, starting with BMC VaraLogix Q Deployment Automation version 4.3.01.05, you can easily reset the root password by filling in the relevant form under the Forgot password link. To fill in the form, use the data from the database.php file, placed at the following location: <RLM_HOME>\releases\<previous version>\Q\app\config\database.php.

1. On the logon page, click the Forgot password link.
2. Fill in the following information:
   
   • Database driver—Select your database type.
   • Hostname—Enter your hostname (localhost or the IP address).
   • Port—Enter your port number.
   • Login BD—Enter the username to log onto the database.
   • Password DB—Enter the password to log onto to the database.
   • Database name—Enter the name of the database.
   • New root password—Enter the new password for the root user.
3. Click Restore.

Once you filled in all the fields correctly, you are redirected to the BMC VaraLogix Q Deployment Automation logon page. Enter the new credentials to log onto the application.

To configure user authentication

Select the authentication method for the system to use to authenticate a user:

• Local authentication: Uses the local system database to store user information, including passwords. Each user belongs to a unique group with a name identical to his or her user name. For configuration steps, see Configuring-local-authentication.
• LDAP authentication: Uses an LDAP server on the network to authenticate users. After a user is authenticated, a user record is created in the system database, along with a copy of the user's LDAP group associations. For configuration steps, see Configuring-LDAP-authentication.
• MSAD authentication: Uses an MSAD server on the network to authenticate users. After a user is authenticated, a user record is created in the system database, along with a copy of the user's MSAD group associations. For configuration steps, see Configuring-MSAD-authentication.

With the exception of the root user, only users configured for the current authentication method (local, LDAP, or MSAD) can log on to the system. For example, if the authentication method is MSAD, only users defined in the MSAD server can log on (except for root).