3.4. Creating Users

This section describes how to use the Administration Console to create an SGD user. You do this by creating a user profile object. A user profile is used to control a user's SGD settings, such as whether they can log in to SGD and the applications that they can run. This section also describes how to make a user an SGD Administrator.

Tip

You can configure SGD to use a Lightweight Directory Access Protocol (LDAP) directory for obtaining information about users. If you configure SGD for LDAP integration, you do not have to create user profiles. The Oracle Secure Global Desktop Administration Guide for Release 4.7 has details of how to configure SGD for LDAP integration.

In the Administration Console, the User Profiles tab is where you create and manage user profiles. See Figure 3.12, “The User Profiles Tab”.

Figure 3.12. The User Profiles Tab

Screen capture of the User Profiles tab

By default, this tab contains two “top-level” objects, a Directory object called organization (o=organization on the command line) and a Directory (light) object called com (dc=com on the command line). You can rename or delete these objects, or create new top-level objects. You create all the objects you need for managing users within these top-level object types.

You can use other Directory objects to subdivide your organization. For example, you might want to use a Directory (organizational unit) for each department in your organization.

3.4.1. Creating User Profiles and SGD Administrators

In this section, you learn how to create a user profile for yourself, and how to make yourself an SGD Administrator. SGD Administrators always have a user profile. Only SGD Administrators can create user profiles.

Users who occupy the Global Administrators role are SGD Administrators. SGD Administrators can configure SGD using any of the SGD administration tools. Users who do not occupy the Global Administrators role have no administration privileges.

The Global Administrators role is an object in the System Objects organization on the User Profiles tab. The Global Administrators role object is used to assign users administrative privileges and to give them access to the administration tools.

After following these procedures, you can log in to SGD using your UNIX or Linux system user name and password, and run the Administration Console.

You can also use the tarantella object new_person command to create a user profile, and the tarantella role add_member command to add an SGD Administrator.

3.4.1.1. How to Create a User Profile

  1. In the Administration Console, click the User Profiles tab.

  2. Select an object in the organizational hierarchy.

    Use the navigation tree to select the organization object, as shown in Figure 3.13, “The Organization Object Selected”.

    You can move your user profile to a different location later if needed.

    Figure 3.13. The Organization Object Selected

    Screen capture showing the organization object selected

  3. Create the user profile object.

    1. In the content area, click New.

      The Create a New Object window is displayed.

    2. In the Name field, type your name.

      For example, John Doe.

    3. Ensure that the User Profile option is selected and click Create.

      The Create a New Object window closes and the content area is updated with the new object. See Figure 3.14, “A Newly-Created User Profile”.

      Figure 3.14. A Newly-Created User Profile

      Screen capture showing a newly-created user profile

  4. Click the View New Object link.

    The General tab for the user profile is displayed in Object View. See Figure 3.15, “The General Tab for a User Profile”.

  5. Configure the user profile.

    1. In the Surname field, type your family name.

      For example, Doe.

    2. Ensure the Login check box is selected and that the Multiple check box is not selected.

      This ensures that you can log in to SGD.

    3. In the User Name field, type your UNIX or Linux system user name.

      For example, jdoe.

      This attribute can be used to identify and authenticate users.

    4. In the Email Address field, type your full email address.

      For example, john.doe@example.com.

      This attribute can be used to identify and authenticate users.

      Figure 3.15. The General Tab for a User Profile

      Screen capture showing the General tab for a user profile

    5. Click Save.

3.4.1.2. How to Add an SGD Administrator

  1. In the Administration Console, click the User Profiles tab.

  2. In the navigation tree, click System Objects.

    The System Objects table is displayed in the content area, as shown in Figure 3.16, “The System Objects Table”.

    Figure 3.16. The System Objects Table

    Screen capture showing the System Objects table

  3. In the System Objects table, click the Global Administrators link.

    The Members tab is displayed in Object View, as shown in Figure 3.17, “The Members Tab”.

    Figure 3.17. The Members Tab

    Screen capture of the Members tab

  4. In the Editable Members table, click Add.

    The Add User Assignment window is displayed. See Figure 3.18, “The Add User Assignment Window”.

  5. Locate your user profile.

    Use the Search field to find your user profile, or browse the navigation tree.

  6. Select the check box next to your user profile and click Add.

    Figure 3.18. The Add User Assignment Window

    Screen capture of the Add User Assignment window

    The Members tab is displayed and your user profile is listed in the Editable Members table. See Figure 3.19, “Updated Members Tab”.

    Figure 3.19. Updated Members Tab

    Screen capture of an updated Members tab