View the Users of Aternity

An Administrator of Aternity can access Users/Groups to view, create and edit usernames to access the system with varying permissions, depending on their role in the company, to allow a user to view dashboards or perform basic or advanced configuration.

You can manage user credentials in the following ways:

Field Description
Local User

Enter and edit all details about the user locally in Aternity, including the username, password, department, privileges.

LDAP User

You can create LDAP-managed network users who enter their regular network usernames and passwords to sign in to Aternity. Their credentials are housed in your Microsoft Active Directory (AD), and therefore password changes are managed there. To configure, you must first connect your AD to Aternity. You can add Aternity users one AD user at a time, or add as an AD group of users (all with the same set of privileges).

Connect the enterprise LDAP directory to use network usernames and passwords

There are usually three levels of users, each with their own sets of permissions.

  • A standard user can sign in to view any of the dashboards to discover and resolve performance issues in the organization.

  • A Power User of Aternity can view dashboards, but also configure the system, by adding applications to be monitored, creating a test group, or mapping locations in the system.

  • An Administrator of Aternity would typically include all the capabilities of a power user, but also include adding and managing users and their privileges in the system.

For more information on the list of permissions or capabilities (known as Roles in the system), see Add or Configure a User.

Procedure

  1. Step 1 Open a browser and sign in to Aternity.
  2. Step 2 Select the Gear Icon > Users.

    View the list of usernames already defined in the system to view your data.

    If a user from a group in your Active Directory (AD) accesses the system, their details appear in this list, but you cannot edit their properties, since they are managed as part of their AD group.

    Important

    This list of users are allowed to sign in to view Aternity. This is NOT the list of monitored usernames and device details which is obtained by the Aternity Agent running directly on the monitored device.

    View the list of users defined in the system
    Field Description
    Add Local User

    Select to create a new Aternity user, where you define the details (username, password, privileges) locally, not from an LDAP directory.

    For more information, see Add or Configure a User.

    Add Directory User

    Select to create a new Aternity user whose usernames and passwords are managed by your AD.

    For more information, see Add or Configure a User.

    Add Directory Group

    Select to create a set of Aternity users in one click, where the usernames and passwords are the same as a user group defined in your AD. Use this to assign all these users with the same privileges and roles.

    For more information, see Add or Configure a User.

    Add SAML User

    Select to create an SSO user who logs in once to your SSO identity provider. Learn more.

    User/Group Name

    Displays the username for accessing the system, typically the user's email address.

    Department

    Lists the department entry for the user as entered when you created that user.

    Type

    You can create a Local User or a SAML User.

    Local users have their credentials managed locally here, while SSO (SAML) users have their credentials managed with your SSO identity provider.

    You can also create a Directory User or a Directory Group, where your Active Directory manages the credentials.

    Change User Type

    Select to switch a local user to an SSO user, or from an SSO user to a local user.

    Local users have their credentials managed locally here, while SSO (SAML) users have their credentials managed with your SSO identity provider.

    After you switch, the system sends the user an automatic email detailing their new sign in instructions.

    Roles

    Displays the list of permissions allowed for this user.

    Tip

    To view a user's roles, you must have at least all the roles of that user. Otherwise the system displays No permission to view.

    Locked

    This user attempted to sign in with an incorrect password too many times (by default more than five times). You can unlock the user by deselecting the check box.

    Enabled

    Select to enable this user's access to the system.

    Actions

    Select any of the following options: