Setting up and managing user accounts

User accounts, user authentication, and user authorization can be defined and managed in either of two ways: in Microsoft Active Directory (Version 2 or 3) LDAP (Lightweight Directory Access Protocol) server, or in an internal OnCommand Insight user database. Having a different user account for each person provides a way of controlling the access rights, individual preferences, and accountability. Use an account that has Administrator privileges for this operation.

Before you begin

You must have completed the following tasks:
Note: Security best practices dictate that administrators configure the host operating system to prevent the interactive login of non-administrator/standard users.

Steps

  1. Open Insight in your browser.
  2. On the Insight toolbar, click Admin.
  3. Click Setup.
  4. Select the Users tab.
  5. To create a new user, click the Actions button and select Add user.
    You enter the Name, Password, Email address, and select one of the user Roles as Administrator, User, or Guest.
  6. To change a user's information, select the user from the list and click the Edit user account symbol to the right of the user description.
  7. To remove a user from the OnCommand Insight system, select the user from the list and click Delete user account to the right of the user description.

Result

When a user logs in to OnCommand Insight, the server first attempts to authenticate through LDAP, if LDAP is enabled. If OnCommand Insight cannot locate the user on the LDAP server, it searches in the local Insight database.