API Management 10.4 | Using API Gateway | User Management | Manage Users, Groups, and Access profiles
 
Manage Users, Groups, and Access profiles
 
Adding a User
Modifying User Details
Deleting a User
User Groups
Access Profiles
Setting Password Restrictions
Setting Password Expiry Restrictions
Configuring Account Locking Settings
Unlocking User Accounts
Configuring API Gateway to Use LDAP
Managing LDAP Directories
You can use API Gateway to define user information on the API Gateway server. The definition of user contains the login ID, password, and group membership.
Alternatively, you can set up API Gateway to access the information from a local user management system or you can use webMethods Integration Server to configure the Lightweight Directory Access Protocol (LDAP) external directory that your site uses for user information.
Note: Central User Management is not supported with API Gateway.
webMethods Integration Server uses user information to authenticate clients and determine the server resources that a client is allowed to access. If the server is using basic authentication (username and password) to authenticate a client, it uses the login ID and passwords defined in user accounts to validate the credentials a client supplies.
API Gateway enables you to define user and group information to the API Gateway server. The user definition contains the user login ID, password, and group membership. The group definition contains the group name and a list of users in the group. Once a group is created, the functional privileges are associated to a group using Access profiles. For example, a user has the administrative privileges if he or she belongs to the Administrators group or to any other group added to the access profile having administrator functional privileges.
You can add and manage user information from the User Management page. This page lists all the basic information for the following:
*Users: User personas who can access API Gateway and perform tasks. A predefined user is an Administrator who has administrator privileges.
*Groups: The group membership identifies the groups to which a user belongs. User can create a group, associate users to the group, and delete a group in API Gateway.
*Access profiles: The functional privileges that are grouped together to form an access profile, and associate LDAP or local groups to the access profile. User can create an access profile, add functional privileges to the profile, associate groups to access profiles, and delete an access profile.
*Account settings: You can define the password restrictions, password expiry and the account lock settings here.
*LDAP configuration: You can configure API Gateway to use LDAP and manage LDAP directories here.
User must be associated with at least one access profile to access and logon to API Gateway.
You must associate a user with a group and the group can be associated with an access profile. The user cannot access API Gateway if the corresponding user group is not associated with an access profile.

Copyright © 2015- 2019 | Software AG, Darmstadt, Germany and/or Software AG USA, Inc., Reston, VA, USA, and/or its subsidiaries and/or its affiliates and/or their licensors.
Innovation Release