Administration Console Online Help

Previous Next Open TOC in new window
Content starts here

Create users

Before you begin

Read Manage users and groups and Use roles and policies to secure resources.

Note: When using the WebLogic Server Administration Console, or WLST, you can create users only in the following databases:

To create users in other identity stores — for example, any external LDAP server — you must use the tools available with those stores. In addition, if you customize the default security configuration to use a custom Authentication provider, you must use the administration tools supplied by that security provider to create a user. If you are upgrading to the WebLogic Authentication provider, you can load existing users and groups into the embedded LDAP server. For more information, see Migrating Security Data.

To create a user:

  1. In the left pane select Security Realms.
  2. On the Summary of Security Realms page select the name of the realm (for example, myrealm).
  3. On the Settings for Realm Name page select Users and Groups > Users.

    The User table displays the names of all users defined in the Authentication provider.

  4. Click New.
  5. In the Name field of the Create New User page enter the name of the user.

    User names must be unique. For the WebLogic Authentication provider (DefaultAuthenticator), user names are case insensitive. User names must not include tabs or any of the following characters:

    • Semicolons — ;
    • Commas — ,
    • Plus signs — +
    • Equal signs — =
    • Single backslash character — \ (note that two consecutive backslashes may be used; for example smith\\)
    • Apostrophe — '
    • Double quotes — "

    In addition, user names must not begin with either of the following characters:

    • Pound sign — #
    • Double quotations — "

    Important: If a user is created with any of the preceding invalid characters, the WebLogic domain can become corrupted.

  6. (Optional) In the Description field, enter a description. The description might be the user's full name.
  7. In the Provider drop-down list, select the Authentication provider for the user.

    If multiple Authentication providers are configured in the security realm, they will appear in the list. Select the Authentication provider that corresponds to the database in which the information for the new user is to be stored.

  8. In the Password field, enter a password for the user.
    The minimum password length for a user defined in the WebLogic Authentication provider is 8 characters. Do not use the username/password combination weblogic/welcome1 in production.

    Note: Oracle recommends that you configure the Password Validation provider in the security realm after you create a domain. The Password Validation provider can be configured to impose additional password composition rules. For more information, see Configure the Password Validation provider.

  9. Re-enter the password for the user in the Confirm Password field.
  10. Click OK to save your changes.

    The user name appears in the User table.

After you finish

  • If the user is created in the WebLogic Authentication provider (also known as the Default Authentication provider), you may optionally set attributes for the user. For instructions, see Manage values for user attributes.
  • For more efficient management, Oracle recommends adding users to groups. For instructions, see Add users to groups.

Back to Top