Versions Compared

Old Version 1

changes.mady.by.user Former user

Saved on

compared with

New Version 2

changes.mady.by.user Former user

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

User management is a mechanism that involves defining and managing users, roles, and their access levels in a system. A user management dashboard or console provides system administrators with a birdshigh-eye level view of a system's active user sessions, their log-in statuses, the privileges of each user, and their activity in the system, enabling the system admins to make business-critical, real-time security decisions. A typical user management implementation involves a wide range of functionality such as adding/deleting users, controlling user activity through permissions, managing user roles, defining authentication policies, managing external user stores, manual/automatic log-out, and resetting user passwords etc.

User management

...

User management comes bundled with the WSO2 Carbon platform and facilitates the management and control of user accounts and roles at different levels. Since it is integrated into the core Carbon platform, user management capability is available functionality is provided by default in all WSO2 Carbon-based products .

The user store of WSO2 products can be configured to operate in either one of the following modes.

  • In Read/Write mode, WSO2 products read/write from/to the user store.
  • In Read Only mode, WSO2 products do not modify any data in the user store. They maintain roles and permissions in the Carbon database but can read users/roles from the configured user store.

The user kernal of WSO2 products has the following features:

  • The concept of a primary user store, which is either external or internal.
  • Apache LDAP/RDBMS as the default, embedded user store.
  • Ability to configure multiple/external user stores.
  • Ability to operate in read-only mode on your organisation's user stores.
  • Ability to operate in read-write mode on internal and external user stores.
  • Support for any custom realm.
  • Roles that contain users from external user stores.
  • Improved configurability for external user stores.
  • Ability to read/write roles from/to LDAP/Active Directory user stores.
  • Ability to implement management permission through the management console UI.

The user core is driven by and is configured in the user-mgt.xml file found in : the <PRODUCT_HOME>/repository/conf folder.See the following pages to learn more information For more information on user management, see the following topics:

Child pages (Children Display)