Reset a User's Password

You can reset the password of locally defined users by selecting Reset Password in the Users/Groups window. For locally defined users, a password must be at least 8 characters long, with at least one uppercase (A-Z), one lowercase (a-z), one number (0-9) and one non-alphanumeric character (like @, #, $). The system encrypts all locally managed passwords.

For network usernames whose credentials are managed from your Microsoft Active Directory, change the passwords there. For SSO users whose credentials are managed with your SAML identity provider, change the passwords there.

If the username for Aternity is in the format of an email address, the system sends an automatic email to the address defined as the username. For more information on configuring your email server, see Connect Email Server to Aternity. The mail contains a temporary link to the system, where this user can define a new password.

If the user's email address changes, you must change the username to reflect the new address, and notify the person to use this new address to sign in to Aternity by resetting their password.

If you have locally defined users whose usernames are not in email address format, you can reset it to the default password, or alternatively you can manually enter a new password on their behalf. The default password of the system, when you reset any locally defined user, is Q!w2e3r4. To change that default, select the Gear Icon > Settings > Advanced Settings > security > defaultPassword and set the value there.

Procedure

  1. Step 1 Open a browser and sign in to Aternity.
  2. Step 2 Select the Gear Icon > Users.

    View the list of usernames already defined in the system to view your data.

    If a user from a group in your Active Directory (AD) accesses the system, their details appear in this list, but you cannot edit their properties, since they are managed as part of their AD group.

    Important

    This list of users are allowed to sign in to view Aternity. This is NOT the list of monitored usernames and device details which is obtained by the Aternity Agent running directly on the monitored device.

    View the list of users defined in the system
    Field Description
    Add Local User

    Select to create a new Aternity user, where you define the details (username, password, privileges) locally, not from an LDAP directory.

    For more information, see Add or Configure a User.

    Add Directory User

    Select to create a new Aternity user whose usernames and passwords are managed by your AD.

    For more information, see Add or Configure a User.

    Add Directory Group

    Select to create a set of Aternity users in one click, where the usernames and passwords are the same as a user group defined in your AD. Use this to assign all these users with the same privileges and roles.

    For more information, see Add or Configure a User.

    Add SAML User

    Select to create an SSO user who logs in once to your SSO identity provider. Learn more.

    User/Group Name

    Displays the username for accessing the system, typically the user's email address.

    Department

    Lists the department entry for the user as entered when you created that user.

    Type

    You can create a Local User or a SAML User.

    Local users have their credentials managed locally here, while SSO (SAML) users have their credentials managed with your SSO identity provider.

    You can also create a Directory User or a Directory Group, where your Active Directory manages the credentials.

    Change User Type

    Select to switch a local user to an SSO user, or from an SSO user to a local user.

    Local users have their credentials managed locally here, while SSO (SAML) users have their credentials managed with your SSO identity provider.

    After you switch, the system sends the user an automatic email detailing their new sign in instructions.

    Roles

    Displays the list of permissions allowed for this user.

    Tip

    To view a user's roles, you must have at least all the roles of that user. Otherwise the system displays No permission to view.

    Locked

    This user attempted to sign in with an incorrect password too many times (by default more than five times). You can unlock the user by deselecting the check box.

    Enabled

    Select to enable this user's access to the system.

    Actions

    Select any of the following options:

  3. Step 3 Select Reset Password to change the password.

    For locally defined users, a password must be at least 8 characters long, with at least one uppercase (A-Z), one lowercase (a-z), one number (0-9) and one non-alphanumeric character (like @, #, $). The system encrypts all locally managed passwords.

    If the username for Aternity is in the format of an email address, the system sends an automatic email to the address defined as the username. For more information on configuring your email server, see Connect Email Server to Aternity. The mail contains a temporary link to the system, where this user can define a new password.

    If you have locally defined users whose usernames are not in email address format, you can reset it to the default password, or alternatively you can manually enter a new password on their behalf. The default password of the system, when you reset any locally defined user, is Q!w2e3r4. To change that default, select the Gear Icon > Settings > Advanced Settings > security > defaultPassword and set the value there.