Creating a New Administrator Account
During system initialization, a default administrator account is set up. This default account cannot be deleted. It provides access to the Service Enclave, from where additional administrator accounts can be created and managed.
Using the Service Web UI
-
Open the navigation menu and click Users.
-
Click Create User to open the Create User window.
-
Enter the following details:
-
Name: Enter a name for this administrator account. This is the name that will be used to log in.
-
Authorization Group: Select the authorization group to which the new administrator is added. This selection determines the access rights and privileges of the administrator account.
-
Password: Set a password for the new administrator account. Enter it a second time to confirm.
-
-
Click Create User. The new administrator account is displayed in the Users table.
Using the Service CLI
-
Display the list of authorization groups. Copy the ID of the authorization group in which you want to create the new administrator account.
PCA-ADMIN> list AuthorizationGroup Command: list AuthorizationGroup Status: Success Time: 2021-08-25 08:38:58,632 UTC Data: id name -- ---- 587fc90d-3312-41d9-8be3-1ce21b8d9b41 MonitorGroup c18cc6af-4ef8-4b1c-b85d-ee3b065f503e DrAdminGroup 8f03faf2-c321-4455-af21-75cbffc269ef AdminGroup 5ac65f5d-1f8c-42ea-a1de-95a1941f009f Day0ConfigGroup 365ece7b-0a09-4a04-853c-7a0f6c4789f0 InternalGroup 7da8be67-758c-4cd6-8255-e9d2900c788e SuperAdminGroup
-
Create a new administrator account using the command
createUserInGroup
.Required parameters are the user name, password and authorization group.
PCA-ADMIN> createUserInGroup name=testadmin password=************ confirmPassword=************ authGroup=365ece7b-0a09-4a04-853c-7a0f6c4789f0 Command: createUserInGroup name=testadmin password=***** confirmPassword=***** authGroup=365ece7b-0a09-4a04-853c-7a0f6c4789f0 Status: Success Time: 2021-08-25 08:48:53,138 UTC JobId: 6dd5a542-4399-4414-ac3b-636968744f79
-
Verify that the new administrator account was created correctly. Use the
list
andshow
commands to display the account information.PCA-ADMIN> list User Command: list User Status: Success Time: 2021-08-25 08:49:01,064 UTC Data: id name -- ---- 401fce73-5bee-48b1-b86d-fba1d85e049b admin 682ebc19-8493-4e9a-817c-148acea4b1d4 testadmin PCA-ADMIN> show user name=testadmin Command: show User name=testadmin Status: Success Time: 2021-08-25 08:50:04,245 UTC Data: Id = 682ebc19-8493-4e9a-817c-148acea4b1d4 Type = User Name = testadmin Default User = false AuthGroupIds 1 = id:365ece7b-0a09-4a04-853c-7a0f6c4789f0 type:AuthorizationGroup name:InternalGroup UserPreferenceId = id:1321249c-0651-49dc-938d-7764b9638ea9 type:UserPreference name: