User / User Group Management

To delete a User account:
capam33
HID_ManageUsersPanel
The following
Privileged Access Manager
functions are available for managing Local, LDAP, RADIUS, and SecurID users on the List Users menu. (The imported LDAP values cannot be edited, but the generated fields can.) The Smartcard/PKI user options available are "edit" and "delete."
User Record Updates
Editing a User
To delete a User account:
  1. From the list in
    Users
    ,
    Manage Users
    , identify the line item record of an existing User, and click anywhere in the line.
  2. Complete edits, and select 
    OK
    After you update the User record, the visible record (editing fields) collapses so that only the User list is visible.
Copying a User
To create a User account with the same access permissions and policies as an existing User:
  1. From the list in
    Users
    ,
    Manage Users
    , open the record of an existing User.
  2. At the bottom of the record, select the
    Copy
    button.
    A new record is created, populated with a copy of the original User information except for the Username.
    This new record opens immediately below the record of the copied User, while the record of the copied User is closed. To confirm the copy, inspect the User list above the new record editing pane. The list shows the line item of the original User.
  3. Enter (the required) Username for the new User. Edit other fields as desired, and select the
    OK
    button to create the User.
Disabling a User
To disable (preserve, but not allow activity by) a User account:
  1. From the list in
    Users
    ,
    Manage Users
    , identify the existing User, and open its record (by double-clicking it or selecting 
    Update
    ).
  2. On the Administration tab, clear the checkbox for
    Account
    Enabled
    .
  3. Select 
    OK
    .
To list disabled Users:
  1. On the
    Users
    ,
    Manage Users
    page, use the filter under the Session Manager Users heading.
  2. Select "Account Enabled" from the
    Column
    drop-down list.
  3. Select "False" from the
    Value
    drop-down list.
  4. Select the
    Filter
    button to display only disabled users.
To re-enable multiple User accounts:
  1. On the
    Users
    ,
    Manage Users
    page, use the filter under the Session Manager Users heading.
  2. Select "Account Enabled" from the
    Column
    drop-down list.
  3. Select "False" from the
    Value
    drop-down list.
  4. Select the
    Filter
    button to display only disabled users.
  5. Select each User to enable by clicking its checkbox, or select them all by clicking the checkbox next to the column headings.
  6. When the list of choices is complete, select the
    Enable
    button.
Deleting a User
To delete (completely remove) a User account, follow these steps:
  1. From the list in
    Users
    ,
    Manage Users
    , identify the line item record of an existing User, and select the checkbox to the left.
  2. Select the
    Delete
    button.
  3. Select 
    Yes
    in the confirmation request. An acknowledgment is presented in a new dialog.
  4. Close the acknowledgment box.
Only afterward, the list is updated by removing the line item.
Approve CAC User
Smartcards, including Common Access Cards (CAC), use certificates to authenticate users.
Privileged Access Manager
validates the user certificate against a Certificate Revocation List. The smartcard parameters must be set in the
Global Configuration
under the
Security
tab.
The first time that a smartcard user accesses
Privileged Access Manager
their public key is registered and the user appears in the
Approve CAC User
. The user must be approved before device access can be assigned.