How You Manage Application Users on the Security Console

Human resource specialists and line managers use the Manage User Account task for routine management of user accounts and role provisioning. Users can perform some tasks, such as requesting or delegating roles, on the My Account page.

IT security managers can also manage user accounts, if appropriate. They perform relevant tasks on the Security Console. This topic summarizes the user-management tasks that IT security managers can perform.

User Management on the Security Console

On the User Accounts page of the Security Console, IT security managers can:

• Create and manage user accounts. Typically, only accounts for implementation users are created and managed in this way.

• Delete the account of an implementation user, if required. User accounts of application users should not be deleted.

• Lock and unlock user accounts. Users can't sign in to locked accounts.

• Make user accounts active or inactive.

• Provision roles to implementation users.

• Reset user passwords, provided that the Administrator can manually reset password option is selected for the relevant user category.

On the User Categories page of the Security Console, IT Security Managers can create and manage user categories. For any category, they can:

• Define the default format of user names.

• Set the password policy.

• Manage notifications.

• Add users to and remove users from the category.