Creating an Interconnection-Purpose Account (Rights Separation Mode)

Prerequisites

• The system administrator's and security administrator's passwords are known.
• The system administrator has User Management rights and the security administrator has Role Management rights.

• For the system administrator, the default user name is sysadmin.

  Default password: See the default password of the account for the target node on the Type A (Portal) sheet in the OceanStor BCManager 8.2.0 eReplication Account List.

• For the security administrator, the default user name is secadmin.

  Default password: See the default password of the account for the target node on the Type A (Portal) sheet in the OceanStor BCManager 8.2.0 eReplication Account List.

Procedure

1. Creates a user.
   1. Log in to FusionCompute using the system administrator account. Then, choose System Management > Rights Management.

      The Rights Management page is displayed.

   2. Click User Management.
   3. Click Add User

      

   4. Specify User Type.

      In this task, select Interface interconnection user.

      • Domain user: logs in to the system using the domain user name and password.
      • Local user: logs in to the system using the local user name and password.
      • Interface interconnection user: an internal account used for interconnection between FusionCompute and other components.
   5. Ser user parameters.

      Table 1 describes the user parameters.

      Table 1 User parameters

      User parameters	Description
      Username	The domain user name must be consistent with that created on the domain server and its length must not exceed 255 characters. The local user name and the interface interconnection user name must contain only letters, digits, underscores, and hyphens, start with a letter, and have a length of 1 to 20 characters.
      Password	As specified in the default password policy, a password must contain any two of the following three character types: upper-case letter, lower-case letter, and digit; a password must contain at least one of the special characters: at least one special character (`~!@#$%^&*()-_=+\|[{}];:'",<.>/?; the default password length is 8 to 32 characters. This parameter does not need to be specified for a domain user. All modifications to the password must comply with the current password policy.
      Maxi concurrent logins	Specifies the maximum number of users who can use the specific user name to log in to the system.
      Mobile	Its value must consist of digits with a maximum of 25 characters.
      Email	Its value must be a valid email address, to which any newly-generated alarm will be sent for informing the administrator.
      Description	User description

   6. Click OK.

      A message box is displayed.

   7. Click OK.

      The user creation is completed.

2. Activate the user.
   1. Log in to FusionCompute using the security administrator account. Then, choose System Management > Rights Management.

      The Rights Management page is displayed.

   2. Click User Management.
   3. On the new user row, choose More > Activate user.
   4. Specify User Type.
      • sysadmin: only performs system service maintenance and user management operations.
      • secadmin: manages roles, manages the password policy, activates/locks/unlocks users, and checks the system logs.
      • secauditor: only manages system logs and audits other users' operations.
   5. Check whether the desired role is selected in Subrole.
      • If yes, go to Creating an Interconnection-Purpose Account (Rights Separation Mode).
      • If no, go to Step 2.6.
   6. Click Add Role. Add the desired role.

      For details on how to create a role, see the FusionSphere Virtualization Suite Product Documentation.

   7. In Subrole, select the desired role and click OK.

      A message box is displayed.

   8. Click OK.