Trading Networks 10.3 | Administering and Monitoring B2B Transactions | Integration Server Administrator's Guide | Managing Users and Groups | Defining a User Account
 
Defining a User Account
 
Predefined User Accounts
Adding User Accounts
Deleting User Accounts
Adding an Administrator User
Adding a Developer User
Changing Passwords
Configuring Password Requirements and Expiration Settings
When you create a user account on Integration Server, you specify a user name, password, and group membership.
*User name. A user name is a unique name that identifies a client. You can specify a user name that represents an actual person (e.g., "JDSmith" for John D. Smith), or you can specify a user name to represent applications, job functions, or organizations. For example, you might set up generically named user names such as "MktgPurchAgent," "MktgTimeKeeper," and so forth, to represent job functions.
*Password. A password is an arbitrary string of characters that you associate with a user name. The server uses the password when authenticating a client who has submitted a valid user name. For more information about authentication, see Customizing Authentication Using JAAS.
A password is meant to be a secret code shared only by the server, the server administrator, and the owner of the user account. Its purpose is to give the server added assurance that a request is coming from a legitimate user. Only administrators can assign a password to a user name and change a password for an existing account. For additional security, the server hashes passwords before storing them.
Note:Integration Server also provides password digest as an authentication option.
*Group membership. The group membership identifies the groups to which a user belongs. Access to the server's resources is controlled at the group level:
Only users that are members of the Administrators group can configure and manage the server using the Integration Server Administrator. For more information about controlling access to the Integration Server Administrator, see FIPS 140-2 Compliance.
Only users that are members of the Developers group can connect to the server from Software AG Designer to create, modify, and delete services. For information, see Adding a Developer User.
The server protects access to services and files using Access Control Lists (ACLs). You set up ACLs that identify groups that are allowed or not allowed to access a resource. For more information about protecting services and files, see Controlling Access to Resources with ACLs.