Creating a New Administrator Account

During system initialization, a default administrator account is set up. This default account cannot be deleted. It provides access to the Service Enclave, from where additional administrator accounts can be created and managed.

Using the Service Web UI

  1. Open the navigation menu and click Users.

  2. Click Create User to open the Create User window.

  3. Enter the following details:

    • Name: Enter a name for this administrator account. This is the name that will be used to log in.

    • Authorization Group: Select the authorization group to which the new administrator is added. This selection determines the access rights and privileges of the administrator account.

    • Password: Set a password for the new administrator account. Enter it a second time to confirm.

  4. Click Create User. The new administrator account is displayed in the Users table.

Using the Service CLI

  1. Display the list of authorization groups. Copy the ID of the authorization group in which you want to create the new administrator account.

    PCA-ADMIN> list AuthorizationGroup
    Command: list AuthorizationGroup
    Status: Success
    Time: 2021-08-25 08:38:58,632 UTC
    Data:
      id Name
     -- ----
     9e6fef47-6ba7-4123-b25d-f9406173a609 OracleServiceAdmin
     2652ac1a-aa9e-4edf-bae7-d434efb23052 OCIApp
     411ed79b-8f66-434b-862a-3c6e1b036fc4 SuperAdmin
     f5f9a82e-aa0a-4c31-a873-fae59fe20f38 Initial
    PCA-ADMIN>
  2. Create a new administrator account using the command createUserInGroup.

    Required parameters are the user name, password and authorization group.

    PCA-ADMIN> createUserInGroup name=testadmin password=************ confirmPassword=************ authGroup=365ece7b-0a09-4a04-853c-7a0f6c4789f0
    Command: createUserInGroup name=testadmin password=***** confirmPassword=***** authGroup=365ece7b-0a09-4a04-853c-7a0f6c4789f0
    Status: Success
    Time: 2021-08-25 08:48:53,138 UTC
    JobId: 6dd5a542-4399-4414-ac3b-636968744f79
  3. Verify that the new administrator account was created correctly. Use the list and show commands to display the account information.

    PCA-ADMIN> list User
    Command: list User
    Status: Success
    Time: 2021-08-25 08:49:01,064 UTC
    Data:
      id                                     name
      --                                     ----
      401fce73-5bee-48b1-b86d-fba1d85e049b   admin
      682ebc19-8493-4e9a-817c-148acea4b1d4   testadmin
    
    PCA-ADMIN> show user name=testadmin
    Command: show User name=testadmin
    Status: Success
    Time: 2021-08-25 08:50:04,245 UTC
    Data:
      Id = 682ebc19-8493-4e9a-817c-148acea4b1d4
      Type = User
      Name = testadmin
      Default User = false
      AuthGroupIds 1 = id:365ece7b-0a09-4a04-853c-7a0f6c4789f0  type:AuthorizationGroup  name:InternalGroup
      UserPreferenceId = id:1321249c-0651-49dc-938d-7764b9638ea9  type:UserPreference  name: