Versions Compared

Old Version 1

changes.mady.by.user Stonebranch

Saved on

compared with

New Version Current

changes.mady.by.user Katie Murphy

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.


Panel

Table of Contents

...

The available login methods for a user depend depends on the system configuration, the selection of service and provider on the UDMG Admin UI login page, and the user login method. UDMG provides the following login methods:

  • Local database authentication
    • For local database authentication, the user can be configured with either Standard or Standard/Authenticator App (TOTP).
  • LDAP authentication
    • For LDAP authentication, it is possible that the user doesn't exist in UDMG yet. In this case, the user is created as read-only after the LDAP authentication and granted access. An administrator user acquire additional privileges, the The intervention of an administrator user is needed.
  • Single Sign-On (SSO) authentication
    • For SSO authentication, the user must exist on UDMG with an email value that is known by the SSO Identity Provider.

...

Any attempt by a user to use either the Local or LDAP authentication with an invalid username or password receives the following error: 

Code Block
Invalid credentials.

...

The UDMG Admin UI login page displays automatically when the UDMG Admin UI system and correct URL browser are brought up.

The Standard standard login URL is http(s)://<server:port>/auth/login (or simply, http(s)://<server:port>/).

All Local accounts and LDAP-authenticated accounts authenticate through the below standard login page.
 

Image RemovedImage Added
 

Service

The UDMG service to connect to.
The service defines the target environment and the available authentication methods.
The service names and parameters are configured with UDMG Authentication Proxy.

Provider

The authentication method to use for this service. The "local" provider is always enabled.
The available providers for a service are configured with UDMG Authentication Proxy.

See Authentication Methods for additional information.

Username

The user's username.

The default login username is admin.

Password

The user's password.

...

To change a user's password at any time after logging in:


Step 1

On the User Task bar Bar in the top right, click the User Actions Users Name (i.e., admin)button to display a drop-down list arrow to display a menu of user actions.
 
Image RemovedImage Added

Step 2

Click  the Change Password from the drop-down list. The Change Password dialog box pops up.
 
Image RemovedImage Added

Step 3

Enter the Current Password, and a New Passwordand reenter the new password inand the reentered Confirm New Password.

Step 4

Click the Save changes button.


Changing a user's password is also possible with the following methods:

  • with the UDMG command line.
  • within the Users Management page that , which is only accessible to users with the appropriate administrative access permission. 

...

If the Identity Provider is Single Sign-On authentication, then the username and password field fields are not displayed. The user must click the Next button to open the Sign In page from the Identity Provider.

Image RemovedImage Added

Standard/Authenticator App (TOTP)

...

A user configured for Standard / Authenticator App (TOTP) as a login method must setup set up their UDMG account in their authenticator app during their initial login. 

To setup set a user's authentication:

Step 1

During the initial login, an enrollment page is presented to the user assuming they authenticated successfully using their username and password.

Scan QR code. 

Image Modified

Step 2

Click the Manual 

button if the user needs a

button for the manual setup process. 

Image Modified

Step 3

Enter the

Time

time-based one-time password (TOTP)

in the Enter the code*

text box to login to the UDMG Admin UI.

Image Removed

Image Added

Step 4

Once the code is validated, the enrollment is considered complete.

Click the Go to

dashboard

main page button to proceed to the application or wait for the automatic redirection after 5 seconds.

Image Removed

Image Added


After the initial enrollment, the user only has to enter the Time-based one-time password (TOTP ) after authenticated authenticating successfully using your their username and password. – i dont get this – after every successful sign on?


Note
titleNote

The Issuer, which the Authenticator App uses for identifying the account in the app, appears as GatewayName@udmg.stonebranch.com. GatewayName is defined in the UDMG Server configuration file.

Once a user has successfully logged into the application using their Authenticator App two-factor authentication, a TOTP code is required to restore an expired session from the Session Expired login prompt. – do we have a picture of this?

Logging Out

To log out of a user's UDMG Admin UI session:

Step 1

On the User Task Bar in the top right, click the User Actions  Users Name (i.e., admin) button to display a drop-down list arrow to display a menu of user actions.
 
Image RemovedImage Added

Step 2

Click Logout. The user is logged out of the session, and the UDMG Admin UI login page displays.

...

To display a list of currently authenticated user sessions (logged-in users):


Step 1

On the User Task bar Bar in the top right, click the User Actions Users Name (i.e., admin) button to display a drop-down list arrow to display a menu of user actions.
 
Image RemovedImage Added

Step 2

Click User Sessions to display the User Sessions list of currently authenticated user sessions.
 

Step 3

Click the Cancel Session button to expire the user session. The user is logged out.


For each logged-in user, the User Sessions list provides the following columns of information:

...