Page History

Panel

In this section:

Table of Contents

maxLevel	3

User and Session Management provides new tools for creating and editing user accounts, monitoring the list of logged-in users, and closing a session when necessary.

On the

Spacevars

0	product

main screen, go to Administration > Users and Application Management > User and Session Management. The User and Session Management window is displayed.

Caption

0	Figure
1	User Management

The User Management window includes three tables that appear as separate frames:

User Sessions

on EMA

This section helps you to understand the number of sessions currently opened and the list of users currently working on EMA. The name of the user and the IP address from which they are accessing EMA is also provided.

Caption

0	Figure
1	User Management - User Sessions on EMA

Image Removed

Note

icon	false
title	Note

Click Delete against any user name to remove the user from the list.

NETCONF Sessions
Users

The parameters (displayed as column heads) in the tables are:

Table/Frame	Column	Description
User Sessions	`User`	The name of the user.
User Sessions	`Remote System`	The IP address of the system from which the user is remotely accessing the SBC.
NETCONF Sessions	`User`	The name of the user.
	`Session ID`	An unique ID assigned to a particular session by the SBC.
	`Session State`	The state of the session - whether the SBC is being actively used by the user or the session is idle. `In Use` `Idle`
	`Session Lock`	The value of this parameter denotes whether a session has been locked by the SBC or it is in an unlocked state.
Users	`User`	The name of the user.
	`Role`	The role of the user, which indicates the privileges and levels of access the user has during a session.
	`Account Expiration`	Indicates whether the account can expire. `Enabled` `Disabled`
	`Password Expiration`	Indicates whether the password can expire. `Enabled` `Disabled`
	`Account`	Indicates the current state of the account. `Enabled` `Disabled`

false

Info

Note

icon

title	Note

If the web browser crashes, hangs or is manually closed while logged into the EMA GUI, the EMA session will still remain open. Manual intervention by the administrator is required to terminate the session from the EMA GUI. To terminate a user session, click the "x" icon at the far right of the user session entry.

Open Netconf Sessions

This section helps you to understand the number of Netconf sessions currently opened along with the Session ID and the Session State.

Caption

0	Figure
1	User Manegement - Open Netconf Sessions

Image Removed

Include Page

	Netconf_security_protection
	Netconf_security_protection

false

Info

Note

icon

title	Note

To terminate a Netconf session NETCONF session that is not locked, click the "x" icon at the far right of the Netconf session NETCONF session entry.

Create a User

The EMA UI allows you to create new users.

On the
Spacevars
0 product
main screen, navigate to Administration > User and Application Management > User and Session Management.
Click New User on the Users section of the User and Session Management panel.
Caption
0 Figure
1 User Management - Users Fields
Image Removed
window. The Create User window appears:
Caption
0 Figure
1 User Management - Create User
Image Modified
In User, enter a username for the new user you are creating.
The following user-naming rules apply:
- Usernames can begin with A-Z a-z _ only.
- Usernames cannot start with a period, dash, or digit.
- Usernames can contain a period(.), dash(-), alphabetic characters, digits, or underscore(_).
- Usernames cannot consist of digits only.
- Usernames can contain a maximum of 23 characters.
The following names are not allowed:
tty disk kmem dialout fax voice cdrom floppy tape sudo audio dip src utmp video sasl plugdev staff users nogroup i2c dba operator
In Role, select the type of role to assign to this user. For descriptions of the rolesEnter all the required details:
User: Enter the name of user to be created. A valid user name:
- can be alphanumeric
- can contain maximum of 23 characters without spaces
- can contain only . @ _ - + : special characters
  Note
  icon false
  title Note
  The characters #%^&(){}<>,/\;`[]=!$'*?|~ are not allowed.

Role: Specify the type of Role to be assigned to this user. The options are:

Caption

0	Figure
1	User Management - Role

Image Removed

For a list of roles and descriptions

, refer to

Managing SBC Core Users and Accounts

page

.

The role options are:

Administrator
Calea
FieldService
Guest
Operator
SecurityAuditor

Specify Enter the following options for the new user account:

Allow Interactive Access (CLI and EMA): Enable this flag to allow the user to access interactive interfaces such as CLI/EMA.
Allow Machine to Machine Access (REST): Enable this flag to allow the specified user machine-to-machine access to REST API. By default, this is enabled.
Account Expiration Enabled: If checked, the current user account expires as per the account expiration parameters set in the Application Management window.

As per the parameter rules set in the Application Management window, an

For more information, refer to Users and Application Management - Application Management. An account can expire in either of the following conditions:

Set number

Number of failed log in attempts

. This number can be

, set in the Application Management window.

For more information, refer to

Users and Application Management - Application Management

.

Number of days

If

the account is unused

for the set number of days. For more information, refer to

Users and Application Management - Application Management

.

, set in the Application Management window.

Password Expiration Enabled:

If

If checked, the current account

will have the password expiry duration after which the user has to create a new password to login. The duration is set

's password will expire after a duration specified in the Application Management window. For more information, refer to Users and Application Management - Application Management.
Account Enabled: If checked, the account will be enabled immediately.
Access Type: Specifies the type of access that should be given to this user. The options are:
- Public Key Only (CAC Card): The user can login only with U.S. Department of Defense's Common Access Card (CAC) for authentication.
- Password and Public Key: The user can login with the provided password along with the U.S. Department of Defense's Common Access Card (CAC) for authentication.

Click Save to save your edits.

false

Note

icon

Info

title	Note

Each new user will initially receive an auto-generated temporary password which must be changed upon initial login to the system. Except for the admin user, users are not allowed to change their password more than once per calendar day.

Edit Users

The Access Permissions, Roles access permission, role, and account-related information can be modified for all the an existing usersuser.

false

Note

icon

Info

title	Note

"Call Trace User" is a special category User user for which the edit editing and the changing password will is not be supported.

On In the Users section of the User Management screen, in the view pane, highlight click the button adjacent to the account which you would like want to edit.
Caption
0 Figure
1 User Management - Highlight User
Image Removed
The Edit User window appears:
Caption
0 Figure
1 User Management - Edit User Window
Image Removed
.
You cannot edit the name of the user, but you You can modify the following fields:settings. See the Create a User procedure on this page for descriptions of the options.
- Role
- Role: You can the role of the existing user based on the option you choose for this field. For a list of available roles, refer to Create User section in the same page.
- Allow Interactive Access (CLI and EMA): Enable this flag to allow the user to access interactive interfaces such as CLI/EMA.
- Allow Machine to Machine Access (REST): Enable this flag to allow the specified user machine-to-machine access to REST API. By default, this is enabled.
- Account Expiration Enabled: If unchecked, the account will not have any expiration duration.
- Password Expiration Enabled: If unchecked, the password for this account will not have any expiration duration.
- Account Enabled: If unchecked, the account will not enabled and can not be used.
- Access Type: Either one of the the type has to be selected.
  Note
  icon false
  title Note
  You can not edit the name of the user.
Click Save to save your edits.

Reset Password

The Administrator can reset the password of all the usersfor any user.

On the User Management screen, in the view pane, highlight In the Users list, click the button adjacent to the account for which you would like to reset the password. The Edit User window appears as shown above.
.
Click Reset Password. A temporary password is created Click Image Removed to reset the password of the selected user. The Temporary password for that user is created and displayed in the same window.
Caption
0 Figure
1 user Management Edit User - Reset Password
You can optionally click the email icon, Image Removed, to (envelope) icon at the bottom right of the window to email the temporary password to yourself.

false

Note

icon

Info

title	Note

Use this temporary password to log on to the

Spacevars

0	product

system. Once logged in, you will be prompted to change the password to a custom one.

Refer to System - Admin - Password Rules for details of on setting your password.passwords.

Pagebreak

Space shortcuts

Page tree

Versions Compared

Old Version 7

New Version Current

Key

Open Netconf Sessions

Create a User

Edit Users

Reset Password