Oracle iPlanet Web Server 7.0.9 Administrator's Guide

Setting Up Users and Groups

The Administration Server enables editing user accounts, group lists, access privileges, organization units, and other user- and group-specific information for both LDAP and File auth-db types.

ProcedureTo Add a User

  1. Click the Configuration tab to see a list of users and select the configuration you need.

  2. Click the Access Control > Users tab.

  3. Click the New button.

  4. Add User Information.

    Enter the user id and password. Optionally enter the group which the user belongs to. The user ID must be unique. In case of LDAP based authentication DB, the Administration Server ensures that the user ID is unique by searching the entire directory from the search base (base DN) down to see if the user ID is in use. Be aware, however, that if you use the Directory Server ldapmodify command line utility (if available) to create a user, that it does not ensure unique user IDs.


    Note –

    Using CLI

    To create a user through CLI, execute the following command.


    wadm> create-user --user=admin --password-file=admin.pwd --host=serverhost 
    --port=8989 --config=config1 --authdb=KEYFILE1 --full-name=keyfile-config1-u1 
    keyfile-config1-u1

    See CLI Reference, create-user(1).


ProcedureTo Add a Group

  1. Select the configuration from the configuration list. Click Configurations tab to get the list.

  2. Click Access Control > Groups tab.

  3. Click the New button.

  4. Enter the Group Name.

  5. From the Add Users To Group section, search and add existing users to the group.


    Note –

    Creating a group in an authentication database like keyfile or digestfile requires atleast one user to be specified.



    Note –

    Using CLI

    To create a group through CLI, execute the following command.


    wadm> create-group --user=admin --password-file=admin.pwd --host=serverhost
    --port=8989 --config=config1 --authdb=LDAP1 group1

    See CLI Reference, create-group(1).


ProcedureTo Delete a User

  1. Select the configuration from the configuration list. Click Configurations tab to get the list.

  2. Click the Access Control > Users tab.

  3. Select the authentication database from which you need to delete the user.

  4. Enter the User ID in the Search Users text box and click the Search button.

  5. Select the user from the UserID column and click the Delete button.


    Caution – Caution –

    Deleting users from a keyfile or digestfile authentication database will delete any associated groups even if the groups contain no members. Groups without members are not allowed in keyfile or digestfile authentication databases.



    Note –

    Using CLI

    To delete a user through CLI, execute the following command.


    wadm> delete-user --user=admin --password-file=admin.pwd --host=serverhost 
    --port=8989 --config config1 --authdb KEYFILE1 user1

    See CLI Reference, delete-user(1).


ProcedureTo Delete a Group

  1. Select the configuration from the configuration list. Click Configurations tab to get the list.

  2. Click the Access Control > Groups tab.

  3. Select the authentication database from which you need to delete the group.

  4. Enter the Group Name in the Search Users text box and click the Search button.

  5. Select the group from the Group Name column and click the Delete button.


    Note –

    Deleting a group does not delete the users belonging to the group. You have to delete the users manually or reassign groups.



    Note –

    Using CLI

    To delete a group through CLI, execute the following command.


    wadm> delete-group --user=admin --password-file=admin.pwd --host=serverhost
    --port=8989 --config config1 --authdb LDAP1 group1

    See CLI Reference, delete-group(1).