List of users (CN)

If you wish to access a user’s data, select the user in the list of CNs on the left. The information concerning this user will appear in the right column.

“Account” tab

Create or update password By clicking on this link, you will be able to create the user’s authentication password in a specific window, which also displays the level of security.

To allow the user to modify his password himself, go to the menu Users\ Authentication module\Internal (or external) interfaces tab\User passwords and select the option Users can change their passwords.

Access privileges This shortcut makes it possible to display the user's access privileges directly in the Users > Access privileges module.
ID (cannot be modified) Connection ID of the selected user.
Last name (cannot be modified) Last name of the selected user
First name (cannot be modified) First name of the selected user
Mail E-mail address of the selected user.
Telephone number Telephone number of the selected user
Description Description of the selected user.

“Certificate” tab

This tab will allow you to manage the user’s x509 certificate.

Since the PKI does not have a certification authority by default, you will need to create one in order to manage user’s certificates: go to the menu Objects\ Certificates and PKI\ Add\Add a root authority.

This certificate will be useful in two cases: SSL authentication and VPN access to the firewall with a mobile IPSec client. This certificate can also be used by other applications.

“Member of these groups” tab

This tab allows including the user in one or several groups:

  1. Click on Add.
    A new line will appear at the top of the table.
  2. Select the arrow to the right of the field.
    A drop-down menu will display the list of existing groups.
  3. Click on the group of your choice.
    It will be added to your table.

To remove a group, select it and click on Delete.

A user attached to several departments, for example, may belong to numerous groups. The maximum number is 50 groups per user.