SunScreen 3.1 Administration Guide

Adding or Modifying an Authorized User

The authorized user object is used to establish a user identity and provide a mechanism to authenticate it by:

To Add An Authorized User with Password Authentication

    Type the following to add an authorized user:

    For local administration:


    edit> authuser add admin1 PASSWORD={ "foo" }   CONTACT_INFO=br@nncc
    REAL_NAME="Ben Ruhmduhm" DESCRIPTION="created for remote administration"
    

    Although the password is in plain text when you add a user, it is automatically encrypted and the password will be displayed as empty quotation marks (" "). Enabled is the default.


    Note -

    The description field cannot contain single (` `) or double (" ") quotation marks as in, for example, the description: This user, test_user is for `testing' only.


    All changes apply immediately.

    For the changes to take effect in policy and administrative access rules, you must activate the policy.

To Add An Authorized User and SecurID Name

    Type the following to add an authorized user:

    • For local administration:


      edit> authuser add admin1 SECURID={ "C2BR" }  CONTACT_INFO=br@nncc 
      REAL_NAME="Ben Ruhmduhm"  DESCRIPTION="created for remote administration"
      

    • For remote administration:


      edit> authuser add admin1 SECURID={ "C2BR" }  CONTACT_INFO=br@nncc
      DESCRIPTION="created for remote administration"
      

    Enabled is the default. All changes apply immediately. For the changes to take effect in policy and administrative access rules, you must activate the policy.

To Modify Authorized Users

    Type the following to modify the information for a user, for example to change the SecurID name from C3BR to C4BR:


    edit> authuser add admin1 SECURID={ "C4BR" } CONTACT INFO=br@nncc  
    REAL_NAME="Ben Ruhmduhm" DESCRIPTION="reated for remote administration"  
    

    The new parameters for the user will overwrite the old parameters. All changes apply immediately.

    Modifications to passwords or SecurID passcodes take place immediately. For other changes to take effect in policy and administrative access rules, you must activate the policy.

To Delete an Authorized User

    Type the following to delete an authorized user, for example:


    edit> authuser delete admin1
    

    All changes apply immediately.