List of users (CN)

If you wish to access a user’s data, select the user in the list of CNs on the left. The information concerning this user will appear in the right column.

Account tab

Create or update password By clicking on this link, you will be able to create the user’s authentication password in a specific window, which also displays the level of security.

To allow users to change their own passwords, go to the Users module > Authentication > Captive portal profiles tab > Advanced properties section > User passwords.

Access privileges This shortcut makes it possible to display the user's access privileges directly in the Users > Access privileges module.
ID (cannot be modified) Connection ID of the selected user.
Last name (cannot be modified) Last name of the selected user
First name (cannot be modified) First name of the selected user
Mail E-mail address of the selected user.
Phone number Telephone number of the selected user
Description Description of the selected user.


This section appears only when the selected user authenticated on the firewall with a TOTP.

TOTP code to be verified In this field, enter the TOTP used to connect to services on the firewall that use TOTP authentication to verify its validity.
Reset enrollment When you click on this button, the user’s TOTP enrollment will be reset: the next time this user connects to services on the firewall that use TOTP authentication, he or she will need to start the whole process of TOTP enrollment all over again.

Users with administration privileges cannot be deleted from the TOTP database.

Certificate tab

This tab will allow you to manage the user’s x509 certificate.

Since the PKI does not have a certification authority by default, you will need to create one in order to manage user’s certificates: go to the Objects module > Certificates and PKI > Add button > Add a root authority.

This certificate will be useful in two cases: SSL authentication and VPN access to the firewall with a mobile IPsec client. This certificate can also be used by other applications.

Member of these groups tab

This tab allows including the user in one or several groups:

  1. Click the Add button.
    A new line will appear at the top of the table.
  2. Select the arrow to the right of the field.
    A drop-down menu will display the list of existing groups.
  3. Click on the group of your choice.
    It will be added to your table.

To remove a group, select it and click on Delete.

A user attached to several departments, for example, may belong to many different groups. The maximum number is 50 groups per user.