Identity Source: Local Users

System Manager maintains a user database that is separate from the Admin Portal database. The user you specify when you install Ivanti EPMM is created as a separate user in each database. All users in the System Manager database are local users with the following privileges that cannot be changed:

  • Command Line Interface (CLI)
  • System Manager access

Important! Local users in the System Manager database are separate users from the local users that you define in the Admin Portal.

Use the Security > Identity Source > Local Users menu options to perform the following tasks using:

Adding local System Manager users

Procedure 

To add a local user to the System Manager database:

  1. Log into System Manager.
  2. Go to Security > Identity Source > Local Users.
  3. Click the Add button to open the Add New User window.
  4. Modify one or more of the fields, as necessary.

    Refer to Add New User window table for details.

  5. Click Apply > OK.

Add New User window

The following table summarizes fields and descriptions in the Add New Users window:

Table 22.   Add New User Fields

Fields

Description

User ID

Enter the unique identifier to assign to this user. The user ID is case sensitive.

First Name

Enter the user’s first name.

Last Name

Enter the user’s last name.

Password

Enter a password for the user.

Valid passwords are determined by the password policy for System Manager local users.

For details, see:

Enter a password for the user based on the Password Policy configured by the administrator in the System Manager (Security > Identity Source > Password Policy). However the following password requirements cannot be changed:

  • cannot be the same as the user ID
  • cannot contain the Grave accent character
  • cannot contain the space character
  • cannot have 4 or more repeating characters
  • users cannot change a password more than once during a 24 hour period

Confirm Password

Confirm the password for the user.

Space

This field is not configurable. It is set to the global space.

Email

Enter the user’s email address.

EDIPI

Department of Defense customers only:

Enter the user's the Department of Defense identification number, also known as the Electronic Data Interchange Personal Identifier.

This field is required if your configuration on Security > Advanced > Portal Authentication specifies certificate authentication for access to the System Manager using a common access card (CAC).

Advanced: Portal Authentication

Editing local System Manager users

Procedure 

  1. Log into the System Manager.
  2. Select Security > Identity Source > Local Users.
  3. Select the user ID of the entry to display the information for that user.
  4. Make your changes.

    Refer to Add New User window table for details.

    You cannot change the user ID.

  5. Click Apply > OK.

Deleting local System Manager users

Procedure 

  1. Log into the System Manager.
  2. Select Security > Identity Source > Local Users.
  3. Select one or more check boxes for the users you want to delete.
  4. Click Delete.

    You cannot delete the user you logged in with.

  5. Click Yes > OK.