Managing users in federated repositories

After you enable administrative security with federated repositories for the realm, you can create and manage federated repository users. A user is a member to which specific permissions can be assigned, such as access to a resource.

You can manage federated repository users with the administrative console or wsadmin commands. The following information describes console steps. For information about commands, see User and group management commands.

Before you begin

To create or manage a federated repository user on the Users and Groups > Manage Users page, you must enable administrative security with federated repositories and specify the primary administrative user name. You can choose from the three following options.
  • Install the product and select to enable administrative security when specifying options for the profile.
  • If you did not enable security during profile creation, click Security > Global security > Security Configuration Wizard and specify to use a federated repository and specify the user name and password for the security administrator.
  • On the Global security page (Security > Global security), select Enable administrative security, select Federated repositories for the realm, and click Configure.
Regardless of the option you choose, do the following steps:
  1. Deselect Enable application security. If you need application security, ignore this step.
  2. On the Federated repositories page, specify a user name for Primary administrative user name, click Apply, and then save the changes.
  3. When you finish adding or updating your federated repository configuration, return to the Global security page and click Apply to validate the changes.
  4. Restart the deployment manager or node profile, depending on the edition that you are using.
Important: If the federated repositories configuration has changed since the application server or deployment manager was started, you must restart the application server or deployment manager to ensure that changes to users and groups are saved to the current configuration.

Creating a user

You can create one or more users. The users are added to the registry and a login account for each new user is automatically created. When creating the new user, you can also add the user as a member of one or more groups.
  1. Click Users and Groups > Manage Users.
  2. Click Create to create a new user.
  3. In the User ID field, type a unique name to identify the user. This user ID will be added to the user registry and also will be used as the login account name. For example, you might type dlucas
  4. Click Group Membership and then follow the steps in Changing group membership for a user to add the user as a member of one or more existing groups.
  5. In the First name field, type the given or first name of the user. For example, you might type Diana
  6. In the Last name field, type the family or last name of the user. For example, you might type Lucas
  7. Optional: In the E-mail field, type an e-mail address for the user. For example, you might type dlucas@example.com
  8. In the Password field, type a unique password. For example, you might type d4lucas
  9. In the Confirm password field, type the same password again.
  10. Click Create. If successful, a message will display that indicates that the user has been created. Also, the user ID and other user information will be added to the user registry, and a new login account will be created for the user.
  11. To create another user, click Create Another.
  12. Repeat the process until all the new users have been created.

Changing information about a user

You can change information about a specific user, such as the e-mail address. You can update the e-mail address, change the first or last name information, or set a new password.
  1. Click Users and Groups > Manage Users > user_name (where user_name is the user that you want to change).
  2. In the First name and Last name fields, enter the new information, if needed.
  3. In the E-mail field, enter the new information, if needed.
  4. In the Password and Confirm password fields, enter the new password, if needed, and confirm the new password.
  5. To save the changes, either click OK to save and return to the previous window, or click Apply to save but remain on the same window.

Deleting a user

You can search for and list the existing users that match your search criteria. After selecting one or more users, you can delete them and remove their user IDs from the user registry.
  1. Search for one or more users that you want to delete.
  2. Select the check boxes next to the users that you want to delete.
  3. Click Delete.
  4. Click Delete again when asked to confirm the deletion. The users are immediately deleted and removed from the user registry. The table that lists the users is refreshed, and the selected users are no longer displayed in the list.

Viewing information about a user

You can view information about a specific user.
  1. Click Users and Groups > Manage Users > user_name (where user_name is the user that you want to view).
  2. Click on one of the user links to view information about the selected user. You can only view the information, you cannot change it.
  3. Click Cancel after viewing to return to the previous window.

Searching for a user

You can search for existing users that match the search criteria that you specify.
  1. From the navigation pane, click Manage Users.
  2. In the Search by field, select the attribute from the list that you want to use to search for one or more users. For example, select User ID.
  3. In the Search for field, either type the string that you want to search for to limit the set of users, or use the wildcard character (*) to search for all users. Whether the search is case sensitive or case insensitive depends on the user registry that you are using.
  4. In the Maximum results field, specify the maximum number of search results that you want to display.
  5. Click Search. After the search completes, a table displays the users that match your search criteria.