webMethods and Intelligent Business Operations 10.2 | API Gateway User's Guide | User Management | Manage Users, Groups, and Access profiles
 
Manage Users, Groups, and Access profiles
 
Users
User Groups
Access Profiles
You can use API Gateway to define user information on the API Gateway server. The definition of user contains the login ID, password, and group membership.
Alternatively, you can set up API Gateway to access the information from a local user management system or you can use webMethods Integration Server to configure the Lightweight Directory Access Protocol (LDAP) external directory that your site uses for user information:
webMethods Integration Server uses user information to authenticate clients and determine the server resources that a client is allowed to access. If the server is using basic authentication (username and password) to authenticate a client, it uses the login ID and passwords defined in user accounts to validate the credentials a client supplies.
API Gateway enables you to define user and group information to the API Gateway server. The user definition contains the user login ID, password, and group membership. The group definition contains the group name and a list of users in the group. Once a group is created, the functional privileges are associated to a group using Access profiles. For example, a user has the administrative privileges if he or she belongs to the Administrators group or to any other group added to the access profile having administrator functional privileges.
You can add and manage user information from the User Management page. This page lists all the basic information for the following:
*Users: User personas who can access API Gateway and perform tasks. A predefined user is an Administrator who has administrator privileges.
*Groups: The group membership identifies the groups to which a user belongs. User can create a group, associate users to the group, and delete a group in API Gateway.
*Access Profiles: The functional privileges that are grouped together to form an access profile, and associate LDAP or local groups to the access profile. User can create an access profile, add functional privileges to the profile, associate groups to access profiles, and delete an access profile.
User must be associated with atleast one access profile to access and login to API Gateway.
You must associate a user with a group and the group can be associated with an access profile. The user cannot access API Gateway if the corresponding user group is not associated with an access profile. For more information on access profiles, see Access Profiles.

Copyright © 2015- 2018 | Software AG, Darmstadt, Germany and/or Software AG USA, Inc., Reston, VA, USA, and/or its subsidiaries and/or its affiliates and/or their licensors.
Innovation Release