Defining a User Account
When you create a user account on Integration Server, you specify a user name, password, and group membership.
User name. A user name is a unique name that identifies a client. You can specify a user name that represents an actual person (e.g., "JDSmith" for John D. Smith), or you can specify a user name to represent applications, job functions, or organizations. For example, you might set up generically named user names such as "MktgPurchAgent," "MktgTimeKeeper," and so forth, to represent job functions.
Password. A password is an arbitrary string of characters that you associate with a user name. The server uses the password when authenticating a client who has submitted a valid user name. For more information about authentication, see
Customizing Authentication Using JAAS.
A password is meant to be a secret code shared only by the server, the server administrator, and the owner of the user account. Its purpose is to give the server added assurance that a request is coming from a legitimate user. Only administrators can assign a password to a user name and change a password for an existing account. For additional security, the server hashes passwords before storing them.
Note: Integration Server also provides password digest as an authentication option.
Group membership. The group membership identifies the groups to which a user belongs. Access to the server's resources is controlled at the group level:
Only users that are members of the Administrators group can configure and manage the server using the
Integration Server Administrator. For more information about controlling access to the
Integration Server Administrator, see
FIPS 140-2 Compliance.
Only users that are members of the Developers group can connect to the server from
Software AG Designer to create, modify, and delete services. For information, see
Adding a Developer User.
The server protects access to services and files using Access Control Lists (ACLs). You set up ACLs that identify groups that are allowed or not allowed to access a resource. For more information about protecting services and files, see
Controlling Access to Resources
with ACLs.