Administering CA Configuration Automation › Configuring Users and Role-Based Security › Create CA Configuration Automation Users in CA EEM

Create CA Configuration Automation Users in CA EEM

After you install and integrate CA EEM, you can populate CA Configuration Automation with current CA EEM users or you can create new users.

The only user that is defined in CA Configuration Automation before you add users is the super user that was created during the CA Configuration Automation installation process. This super user has rights to all CA Configuration Automation functionality. The super user is designed for the initial login to configure the user access and to access the product if the connectivity to CA EEM is lost. Ensure at least one user has access to all functionality. If you intend to restrict privileges for this user, create and use a different administrative user for managing the product.

You can also create users and store them in an internal database, or you can import users from an external directory, such as Active Directory.

Note: The CA Configuration Automation and CA EEM integration lets you start the CA EEM UI from the CA Configuration Automation Administration panel. However, you need a user account and password to access CA EEM.

Follow these steps:

1. Open CA Configuration Automation, click the Administration link, and click the Access Management tab.
2. On the Users page, click the New User icon to the left of the cca_users folder icon in the Users area (lower left).

   The CA EEM New User page opens in context of CA Configuration Automation.

3. Enter a name in the Name field.

   Limit: 100 alphanumeric characters

4. Click Add Application User Details, then enter the following information:

   app_instance_name

   Defines the CA Configuration Automation instance this user account can access.

   Application Group Membership

   Defines one or more application-specific groups of which this user is a member.

5. Enter the appropriate details about the user in the General area.
6. Add the user to one or more existing global user groups by double-clicking a group in the Available Global User Groups column.

   The Selected Global User Groups column displays the selected group appears.

   Note: To locate a specific user group, complete the Attribute, Operator, and Value fields as appropriate, then click Search.

7. Complete the following fields in the Authentication area:

   Incorrect Login Count

   Indicates the number of concurrent unsuccessful login attempts by a user. This value is reset to zero after a successful login.

   Enable Date

   Defines the date on which to enable the user account. To select a date and time, click the calendar icon. The user cannot log in before the Enable Date or after the Disable Date.

   Disable Date

   Defines the date after which the user account is disabled. To select a date and time, click the calendar icon. Leave this field blank to specify no expiration. The user cannot log in before the Enable Date or after the Disable Date.

   Override Password Policy

   Specifies whether to permit the user to have passwords that do not meet the password policy.

   Change Password at Next Login

   Specifies whether the user must change the password after logging in for the first time with the administrator-assigned password.

   Suspended

   Specifies whether the user account is manually deactivated.

   New Password

   Defines the administer-assigned password for the user. If you select the Change Password at Next Login option, the application prompts the user to change this password after the first login to CA Configuration Automation.

   Confirm Password

   Ensures the password contains no mistakes by requiring that the entries match.

8. Click Save.

   The following message appears:

   Confirmation: Global User created successfully. 
   

   If you specified application-specific details in Step 4, the message also contains the following line:

   Application User Details created successfully.
   

9. Repeat this procedure for each user.