Managing User Access to the Red Hat Customer Portal and the Red Hat Network Application
Creating and Configuring User Accounts
Chapter 1. Basic User Management
1.1. Accessing the User Management Application
- Log into the Customer Portal as an Organization Administrator.
NoteOnly an RHN user whose account has been configured with the role of Organization Administrator can create and configure RHN and Red Hat Customer Portal user accounts. RHN Organization Administrators have unlimited access to RHN resources and functionality, and they have root privileges for all systems assigned to their organization on RHN. All other RHN users can access only the systems assigned to them and can use RHN to perform only the tasks associated with their assigned Roles. For more information on user roles, see Section 184.108.40.206, “Access Permissions Tab” below or section 220.127.116.11.1 of the RHN Reference Guide.
- In the upper-right corner of the Customer Portal, click your user name and choose Account Settings.You will see the following screen:
Figure 1.1. Organization Administrator Dashboard
NoteIf you cannot see the User Management link on the right side of this page, you do not have permissions to create and configure online user accounts for RHN and the Red Hat Customer Portal. Please see your RHN Organization Administrator to change the permissions for your user account.
- Click User Management to display a list of user accounts that have been configured for your organization.You will see the following screen:
Figure 1.2. User List
1.2. Creating New User Accounts
1.2.1. Creating a Single New User Account
Figure 1.3. Adding a New User
1.2.2. Creating Multiple New User Accounts
Figure 1.4. CSV Bulk Upload
1.3. Changing Settings and Permissions for Existing User Accounts
1.3.1. Managing RHN User Access - Changing Single Settings
Figure 1.5. Modifying an Existing User
- Login Information
- User Preferences
- Access Permissions
- System Groups
- Chanel Permissions
18.104.22.168. General Tab
22.214.171.124. Login Information Tab
Figure 1.6. Changing a User's Password
126.96.36.199. User Preferences Tab
Figure 1.7. Changing a User's Preferences
188.8.131.52. Access Permissions Tab
Figure 1.8. Changing a User's Permissions
Table 1.1. Access Permissions
|Customer Portal Access Permissions Checkbox||What It Controls|
|Manage Support Cases||Allows the user to view, create, and update support cases under the Support Cases section of the Support menu.|
|View/Renew Subscription Information||Allows the user to view account subscription and renewal information in the Subscriptions section of the Subscriptions menu.|
|Download Middleware Software & Updates||Allows the user to access JBoss Middleware downloads. Applies only to JBoss Middleware downloads through the Red Hat Customer Portal and does not restrict access to any downloads via RHN. You can restrict access to RHN downloads via the Channel Permissions section described in Chapter 2, Advanced User Management.|
|Manage Your Subscriptions||Allows the user to access Red Hat Certificate-Based Subscription Management under the Certificate-Based Management section of the Subscriptions menu.|
|View/Edit All|| |
|View All (for non-org admin users)|| |
|View/Edit only mine (for non-org admin users)|| |
|User can view and take action on their SMA(Subscription Mgt Applications)|| |
Table 1.2. User Roles
|Role Title||Role Responsibility/Access|
|Organization Administrator|| |
This role can perform any function available within RHN or the Red Hat Customer Portal. As the master account for your organization, this user can alter the privileges of all other accounts, as well as conduct any of the tasks available to the other roles. Like the other roles, multiple Organization Administrators may exist.
While it is possible for one Organization Administrator to remove Organization Administrator rights from another user, it is impossible to remove Organization Administrator rights from the sole remaining Organization Administrator. It is possible to remove your own Organization Administrator privileges so long as you are not the last Organization Administrator.
|Channel Administrator||This role has complete access to the software channels and related associations within your organization. This user may change the base channels of systems, make channels globally subscribable, and create entirely new channels.|
|System Group Administrator||This role is one step below Organization Administrator in that it has complete authority over the systems and system groups to which it is granted access. This user can create new system groups, delete any assigned systems groups, add systems to groups, and manage user access to groups.|
|Monitoring Administrator||This role allows for the scheduling of probes and oversight of other monitoring infrastructure.|
|Configuration Administrator||This role enables the user to manage the configuration of systems in the organization.|
|Activation Key Administrator||This role is designed to manage your organization's collection of activation keys. This user can create, modify, and delete any key within your overarching account.|
184.108.40.206. System Groups Tab
Figure 1.9. Changing a User's Assigned System Groups
220.127.116.11. Systems Tab
Figure 1.10. Changing a User's Assigned Systems
18.104.22.168. Channel Permissions Tab
Figure 1.11. Changing a User's Channel Subscription Permissions
1.3.2. Changing Settings for Multiple Users
Figure 1.12. Changing Access Permissions for Multiple Users
1.4. Deactivating and Reactivating User Accounts
1.4.1. Deactivating Users
Figure 1.13. Deactivating Multiple Users
- To deactivate an existing user account, begin by selecting the appropriate user name on the User List page and clicking Edit to display the General tab on the configuration page for the user account.
- In the upper-right corner of the page, click Deactivate user:
Figure 1.14. Deactivating a User (1 of 3)
- Clickto confirm the deactivation:
Figure 1.15. Deactivating a User (2 of 3)
- You will receive a confirmation message:
Figure 1.16. Deactivating a User (3 of 3)
1.4.2. Reactivating Users
- To view a list of deactivated users, select the Inactive tab on the User List page.
- Select the desired user(s) to reactivate and select Activate.
Figure 1.17. Reactivating Users (1 of 2)
- You will receive a confirmation message:
Figure 1.18. Reactivating Users (2 of 2)
Chapter 2. Advanced User Management
Unsubscribe the User from ChannelsTo begin, you must first unsubscribe the user from channels.
- Select the desired user and navigate to the Channel Permissions tab.
- Click Management under the Channel Permissions tab:
Figure 2.1. Channel Permissions
- Uncheck the boxes next to all of the desired channel names.
- Click thebutton near the bottom of the page.
Figure 2.2. Update Permissions
Ensure Channels are Not Globally SubscribableYou must make sure that there are no globally subscribable channels.
- Begin by navigating to the RHN System Set Manager and selecting Channels, as shown in the image below.
Figure 2.3. Software Channels
- Select Channel Details next to the desired release channel:
Figure 2.4. Selecting Channel Details
- Scroll down and uncheck the Globally Subscribable option:
Figure 2.5. Globally Subscribable Option
- Click thebutton near the bottom of the screen.
Update the User for Each ChannelTo completely remove all permissions, you must repeat Step 1 for the user and the channel that you updated in Step 2. However, you can use the Filter by Channel Name field to search for the correct channel (shown in the figure below) instead of selecting Management under the Channel Permissions tab.
Figure 2.6. Updating User AccessOnce that is complete, repeat Step 2 and Step 3 until you have updated all the desired channels for that user.
Ensure Other Users Maintain AccessOne unintended consequence of making sure that channels are not globally subscribable is that it unsubscribes other users from those channels as well. To subscribe users to channels that were previously globally subscribable, repeat Step 1 for each of those users, but check the box next to the appropriate channels to assign permissions.
More InformationFor more information, see the official API documentation at https://access.redhat.com/site/documentation/en-US/Red_Hat_Network/5.0.0/html/API_Documentation/index.html.