The central user administration in the main license server can be used for all models in the license server. It supports LDAP imports for the transfer of users from the network as well as important aspects of single sign-on.
Central User Administration in the Main License Server
Central user administration in the license server significantly facilitates ongoing user management administrative tasks in user administration. It can be used for all models on the license server.
Central user administration supports LDAP import for taking users from the network.
By default, Innovator users important aspects of single sign-on for the operation of the models. The role concept requires the selection of a user role in the model.
When the model server of a repository is started with single sign-on, all roles contained in the models are made known to the license server for the central user management. Rules are shown separately without overlaps.
Model server rules set who can start and close single sign-on repositories and who can create or delete models.
Version rules enable model versions to be created and started or their properties to be edited.
The Manage Users right enables user management without the need for administrator login.
The Manage Environment right enables technical operations for be carried out, e.g. repairing and deleting model versions.
Single Sign-On
Innovator creates managed models and independent repositories with active single sign-on. This simplifies logging-in to a model of the repository thanks to a system login procedure that means that no separate or repeated password entry is necessary. Managed models (model versions) can only be operated in single sign-on mode.
The user only needs to select the user role they want to open the model with. The roles which the user are offered are also configured in the user administration. The same strategy is also applied for administrator login to the model server and model.
User Management for Models
When the model server of a repository is started with single sign-on, all roles contained in the models are made known to the license server for the central user management.
When a user logs-in to a model in single sign-on repositories, a list of configured roles for the user is determined from the configured login rules in central user management. The roles available to the user appear for them to select when logging-in to the model. A normal user cannot log-in without a user role.
To enable logging-in to a model in a repository without single sign-on, the users, user roles and passwords must be configured in the user management of the model. Users can be transferred from the central user management and from an LDAP server. There is no user management for all models within a repository without single sign-on.
Related Topics
