1.3. Changing Settings and Permissions for Existing User Accounts

To configure an existing online user account, access the User List page, select the desired user(s) you wish to modify, and click Edit.

1.3.1. Managing RHN User Access - Changing Single Settings

If you select a single user, you will see the General tab on the configuration page for the user account:
Modifying an Existing User

Figure 1.5. Modifying an Existing User

The user account configuration page has the following seven tabs:
  • General
  • Login Information
  • User Preferences
  • Access Permissions
  • System Groups
  • Systems
  • Chanel Permissions
The next subsections describe these tabs in more detail.

1.3.1.1. General Tab

On the General tab (shown above), you can enter the user's name, job title, department name/number, and contact information. Click Save at the bottom of the page to apply your changes.
This page also displays history information about when the user was created and when the user's information was last updated.

1.3.1.2. Login Information Tab

Use the Login Information tab to change the password for the user account. Enter the new password twice and click Save to change the password.

Note

You cannot change the user name for an existing user account.
Changing a User's Password

Figure 1.6. Changing a User's Password

1.3.1.3. User Preferences Tab

Use the User Preferences tab to select the language and time zone for the RHN and Red Hat Customer Portal applications. Click Save to apply your changes.
Changing a User's Preferences

Figure 1.7. Changing a User's Preferences

1.3.1.4. Access Permissions Tab

Use the Access Permissions tab to control the user's access to resources and functionality for the Red Hat Customer Portal and the RHN application. Permissions for each environment are controlled separately, as described below.
Changing a User's Permissions

Figure 1.8. Changing a User's Permissions

Use the Access Permissions section of this tab to configure user access permissions for the Red Hat Customer Portal. Check the boxes that correspond to the Red Hat Customer Portal resources and functionality that you want the user to be able to access. When users with restricted access permissions log into the Red Hat Customer Portal, they will be able to see all available menus. However, if those users click on a menu for which they do not have access, the Red Hat Customer Portal will display an error message.
The four checkboxes under the Access Permissions section control access to different resources on the Red Hat Customer Portal, as described in the table below.

Table 1.1. Access Permissions

Customer Portal Access Permissions Checkbox What It Controls
Manage Support Cases Allows the user to view, create, and update support cases under the Support Cases section of the Support menu.
View/Renew Subscription Information Allows the user to view account subscription and renewal information in the Subscriptions section of the Subscriptions menu.
Download Middleware Software & Updates Allows the user to access JBoss Middleware downloads. Applies only to JBoss Middleware downloads through the Red Hat Customer Portal and does not restrict access to any downloads via RHN. You can restrict access to RHN downloads via the Channel Permissions section described in Chapter 2, Advanced User Management.
Manage Your Subscriptions Allows the user to access Red Hat Certificate-Based Subscription Management under the Certificate-Based Management section of the Subscriptions menu.
View/Edit All
  • Allows the user to view and edit all the account systems under the unit and distributor tabs.
  • User can view all details on the overview page and has access to all functionality.
  • User can view all subscriptions available in inventory and take actions such as downloading certificates.
  • User can view subscription utilization page.
  • User can view and take action on all Units
    • Register systems
    • Attach subscriptions
    • Auto attach
    • Delete systems
    • View/Download certificates
    • Download/Regenerate Identity Certs
  • User can view and take action on all Subscription Management Applications
    • Register Subscription Management Applications
    • View all Subscription Management Applications
    • Update
    • Attach Subscriptions
    • Download Manifest
    • Delete Systems
    • Remove Subscriptions
    • Download/Regenerate Identity Certs
View All (for non-org admin users)
  • Allows the user to view all the account systems under the unit and distributor tabs
  • User can view all details on the overview page
  • User can view all subscriptions available in inventory and can take actions such as downloading certificates and export all to CSV.
  • User can view subscription utilization page.
  • User who can view all Units
    • Can not register a system
    • Can not attach subscriptions
    • Can not Auto attach
    • Can not Delete systems
    • View/Download certificates.
    • Download/Regenerate Identity Certs
  • User can view all Subscription Management Applications (SMA)
    • Can not Register a Subscription Management Applications
    • View all Subscription Management Applications
    • Can not Update
    • Can not attach Subscriptions
    • Can not download Manifest
    • Can not delete Systems
    • Can not remove Subscriptions
    • Can download/regenerate Identity Certs
View/Edit only mine (for non-org admin users)
  • Allows the user to view and edit only the systems under the unit and distributor tabs they have registered.
  • User can view all details on the overview page and has access to all functionality.
  • User can view all subscriptions available in inventory and take actions such as downloading certificates.
  • User can view subscription utilization page.
  • User can view and take action on only their Units
    • Register their system
    • Attaching subscriptions to their systems
    • Auto attach to their systems
    • Delete their systems
    • View/Download certificates for their systems
    • Download/Regenerate Identity Certs for their systems
User can view and take action on their SMA(Subscription Mgt Applications)
  • Register their SMA
  • View their SMA
  • Update
  • Attach Subscriptions
  • Download Manifest
  • Delete Systems
  • Remove Subscriptions
  • Download/Regenerate Identity Certs
Use the Account Roles and RHN Roles sections of this tab to configure user access permissions for the RHN application. Check the boxes that correspond to the roles that you want to assign to the RHN user. The table below briefly describes each role. For more detailed information, see section 6.9.1.1.1 of the RHN Reference Guide.

Table 1.2. User Roles

Role Title Role Responsibility/Access
Organization Administrator
This role can perform any function available within RHN or the Red Hat Customer Portal. As the master account for your organization, this user can alter the privileges of all other accounts, as well as conduct any of the tasks available to the other roles. Like the other roles, multiple Organization Administrators may exist.
While it is possible for one Organization Administrator to remove Organization Administrator rights from another user, it is impossible to remove Organization Administrator rights from the sole remaining Organization Administrator. It is possible to remove your own Organization Administrator privileges so long as you are not the last Organization Administrator.
Channel Administrator This role has complete access to the software channels and related associations within your organization. This user may change the base channels of systems, make channels globally subscribable, and create entirely new channels.
System Group Administrator This role is one step below Organization Administrator in that it has complete authority over the systems and system groups to which it is granted access. This user can create new system groups, delete any assigned systems groups, add systems to groups, and manage user access to groups.
Monitoring Administrator This role allows for the scheduling of probes and oversight of other monitoring infrastructure.
Configuration Administrator This role enables the user to manage the configuration of systems in the organization.
Activation Key Administrator This role is designed to manage your organization's collection of activation keys. This user can create, modify, and delete any key within your overarching account.
Click Save to apply your changes.

1.3.1.5. System Groups Tab

On the System Groups tab, you can use the checkboxes to set a user's access permissions to each system group. You can also select one or more default system groups for the user so that when the user registers a system, that system will be assigned to the selected group or groups.
Changing a User's Assigned System Groups

Figure 1.9. Changing a User's Assigned System Groups

1.3.1.6. Systems Tab

On the Systems tab, you can select from the systems listed for use in the System Set Manager. Click Save at the bottom of the page to apply your changes.
Changing a User's Assigned Systems

Figure 1.10. Changing a User's Assigned Systems

1.3.1.7. Channel Permissions Tab

On the Channel Permissions tab, you can find the list of channels available to your organization. You may grant explicit channel subscription permission to a user for each of the channels listed.
Changing a User's Channel Subscription Permissions

Figure 1.11. Changing a User's Channel Subscription Permissions