Creating a New Administrator Account

During system initialization, a default administrator account is set up. This default account cannot be deleted. It provides access to the Service Enclave, from where additional administrator accounts can be created and managed.

Using the Service Web UI

1. Open the navigation menu and click Users.

2. Click Create User to open the Create User window.

3. Enter the following details:

   • Name: Enter a name for this administrator account. This is the name that will be used to log in.

   • Authorization Group: Select the authorization group to which the new administrator is added. This selection determines the access rights and privileges of the administrator account.

   • Password: Set a password for the new administrator account. Enter it a second time to confirm.

4. Click Create User. The new administrator account is displayed in the Users table.

Using the Service CLI

1. Display the list of authorization groups. Copy the ID of the authorization group in which you want to create the new administrator account.

   PCA-ADMIN> list AuthorizationGroup
   Command: list AuthorizationGroup
   Status: Success
   Time: 2021-08-25 08:38:58,632 UTC
   Data:
     id Name
    -- ----
    9e6fef47-6ba7-4123-b25d-f9406173a609 OracleServiceAdmin
    2652ac1a-aa9e-4edf-bae7-d434efb23052 OCIApp
    411ed79b-8f66-434b-862a-3c6e1b036fc4 SuperAdmin
    f5f9a82e-aa0a-4c31-a873-fae59fe20f38 Initial
   PCA-ADMIN>

2. Create a new administrator account using the command createUserInGroup.

   Required parameters are the user name, password and authorization group.

   PCA-ADMIN> createUserInGroup name=testadmin password=************ confirmPassword=************ authGroup=365ece7b-0a09-4a04-853c-7a0f6c4789f0
   Command: createUserInGroup name=testadmin password=***** confirmPassword=***** authGroup=365ece7b-0a09-4a04-853c-7a0f6c4789f0
   Status: Success
   Time: 2021-08-25 08:48:53,138 UTC
   JobId: 6dd5a542-4399-4414-ac3b-636968744f79

3. Verify that the new administrator account was created correctly. Use the list and show commands to display the account information.

   PCA-ADMIN> list User
   Command: list User
   Status: Success
   Time: 2021-08-25 08:49:01,064 UTC
   Data:
     id                                     name
     --                                     ----
     401fce73-5bee-48b1-b86d-fba1d85e049b   admin
     682ebc19-8493-4e9a-817c-148acea4b1d4   testadmin
   
   PCA-ADMIN> show user name=testadmin
   Command: show User name=testadmin
   Status: Success
   Time: 2021-08-25 08:50:04,245 UTC
   Data:
     Id = 682ebc19-8493-4e9a-817c-148acea4b1d4
     Type = User
     Name = testadmin
     Default User = false
     AuthGroupIds 1 = id:365ece7b-0a09-4a04-853c-7a0f6c4789f0  type:AuthorizationGroup  name:InternalGroup
     UserPreferenceId = id:1321249c-0651-49dc-938d-7764b9638ea9  type:UserPreference  name: