In this section:
The User and Session Management configuration provides tools for creating user accounts, monitoring the list of logged-in users, and closing a session when necessary.
As user 'admin,' go to Administration > Users and Application Management > User and Session Management. The User Management window is displayed.
The User Management window includes three tables that appear as separate frames:
The parameters (displayed as column heads) in the tables are:
Table | Column | Description |
---|---|---|
User Sessions | User | The name of the user. |
Remote System | The IP address of the system from which the user is remotely accessing the SBC. | |
NETCONF Sessions | User | The name of the user. |
Session ID | A unique ID is assigned to a particular session by the SBC. | |
Session State | The state of the session - whether the SBC is being actively used by the user or the session is idle.
| |
Session Lock | The value of this parameter denotes whether the SBC has locked a session or is in an unlocked state. | |
Users | User | The name of the user. |
Role | The user's role indicates the privileges and levels of access the user has during a session. | |
Account Expiration | Indicates whether the account can expire.
| |
Password Expiration | Indicates whether the password can expire.
| |
Account | Indicates the current state of the account.
|
If the web browser crashes, hangs, or is manually closed while logged into the EMA GUI, the EMA session will still remain open. Manual intervention by the administrator is required to terminate the session from the EMA GUI. To terminate a user session, click the "x" icon at the far right of the user session entry.
For security protection, the Netconf interface does not support "/aaa" records.
To terminate a NETCONF session that is not locked, click the "x" icon at the far right of the NETCONF session entry.
Click New User on the Users section of the User Management window. The Create User window appears:
In the User field, enter a username for the new user you are creating.
The following user-naming rules apply:
Usernames can contain a maximum of 23 characters.
The following names are not allowed:
tty disk kmem dialout fax voice cdrom floppy tape sudo audio dip src utmp video sasl plugdev staff users nogroup i2c dba operator |
Click Save. A temporary password is provided for the user to initially log in and then create a new password.
Each new user will initially receive an auto-generated temporary password which must be changed upon initial login to the system. Except for the admin user, users are not allowed to change their password more than once per calendar day.
The access permission, role, and account-related information can be modified for an existing user.
"Call Trace User" is a special category user for which editing and changing password is not supported.
In the Users section of the User Management screen, click the button adjacent to the account you want to edit. The Edit User window appears.
You cannot edit the name of the user, but you can modify the following settings. See Create a User above for descriptions of the options.
Access Type
The Administrator can reset the password for any user.
Click Reset Password. A temporary password is created for that user.......
Use this temporary password to log on to the SBC system. Once logged in, you will be prompted to change the password to a custom one.
You must run the following command on the OAM after changing the temporary password to push the new password to the the non-OAM nodes.
request system admin <SYSTEM NAME> saveAndActivate
Refer to System - Admin - Password Rules for details on setting passwords.
Modified: for 12.1.2
Previously, the User and Session Management screen was exclusively available to admin users, who were only authorized to create one user under the Calea group named "calea." Additionally, the calea user was not permitted to create new users. From release 12.1.2 onwards, the SBC is enhanced with the following functionality to support multi-country LI for VoLTE IMS: User and Session Management enhancements LI Target Creation by multiple Calea group users
In the User field, enter a username for the new calea user you are creating.
The following user-naming rules apply:
Usernames can contain a maximum of 23 characters.
The following names are not allowed:
tty disk kmem dialout fax voice cdrom floppy tape sudo audio dip src utmp video sasl plugdev staff users nogroup i2c dba operator |
Click Save. A temporary password is provided for the user to initially log in and create a new password.
The access permission, role, and account-related information can be modified for an existing user. You cannot edit the name of the user, but you can modify the following settings. See Create a 'calea' User above for descriptions of the options.