...
| Panel | ||||
|---|---|---|---|---|
|
| Anchor | ||||
|---|---|---|---|---|
|
Login Methods
Universal Controller provides a Login Method option at the user account level that allows you to select the following login methods:
...
Account Type | Login Method | ||
|---|---|---|---|
Local User Account | Local user accounts, by default, are designated with the Standard login method.
| ||
LDAP-Provisioned User Account | Any user provisioned through LDAP synchronization will be designated, by default, with the login method(s) configured in the LDAP Settings. | ||
Single Sign-On-Provisioned User Account | Any user provisioned through SAML Single Sign-On will be designated, by default, with the Single Sign-On login method only. |
...
For additional details on login method enforcement, see Single Sign-On Troubleshooting.
| Anchor | ||||
|---|---|---|---|---|
|
Standard Login
The Universal Automation Center Login page displays automatically when you bring up the Universal Controller system and browse to its URL.
...
All Local account and AD/LDAP-authenticated accounts authenticate through this standard login URL.
User Name | The default login User name is ops.admin. |
|---|---|
Password | For your initial login to the Controller, no password is required; the Controller prompts you to create a password. |
| Anchor | ||||
|---|---|---|---|---|
|
Changing Your Password
| Note | ||
|---|---|---|
| ||
Changing your password is not applicable to users that log in using LDAP authentication. |
...
If the Password Expiration Enabled field in Password Settings has been enabled, and you reach the maximum number of days that a user password can remain unchanged, as specified by the Password Expiration in Days field in Password Settings, the following dialog displays when you enter your password on the Standard Login page:
| Note | ||
|---|---|---|
| ||
Below the Change Password button, the Change Password dialog will displays any characteristics and restrictions defined in Password Settings. For example:
|
...
| Panel |
|---|
Your new password cannot be the same as your current password. |
| Anchor | ||||
|---|---|---|---|---|
|
Single Sign-On Login
For information on Single Sign-On Login method and the Single Sign-On Login URL, see Single Sign-On Login on the Single Sign-On Settings page.
...
To unlock a locked account, your Controller system administrator must uncheck the Locked out field ion the User Details for that user account.
| Anchor | ||||
|---|---|---|---|---|
|
User Restriction
You can be restricted from logging in to the Universal Controller user interface either of two ways:
...
- Set the System Default Web Browser Access property to Yes and set the Web Browser access field in the User Details for your user account to -- System Default --.
- Set the Web Browser access field in the User Details for your user account to Yes.
| Anchor | ||||
|---|---|---|---|---|
|
License Expiration
If you log in to the Controller and your Controller license is about to expire within one week, the following informational message displays in the Console:
...
| Note | ||
|---|---|---|
| ||
If your license expires, you will not be able to run any tasks. |
| Anchor | ||||
|---|---|---|---|---|
|
Login Disclaimer
The Login Disclaimer Universal Controller system property lets you define multi-lines of free-form text that will display at the bottom of the Universal Automation Center Login page when you attempt to login.
| Note | ||
|---|---|---|
| ||
HTML is not permitted and will be escaped accordingly. |
For example:
| Anchor | ||||
|---|---|---|---|---|
|
Login Notification
The Login Notification Universal Controller system property lets you define a message that displays in the Console when you login to the Controller.
| Anchor | ||||
|---|---|---|---|---|
|
Show Last Login
If the Show Last Login Universal Controller system property = true, the last login time is shown in the console when logging into the user interface. The format of the message is as follows.
...
| Panel |
|---|
|
| Note |
The |
Logging Out
To log out of your Universal Controller session:
Step 1 | On the User Task Bar, click the User Actions drop-down list arrow to display a menu of user actions. |
|---|---|
Step 2 | Click Logout. You are logged out of this session, and the Universal Automation Center Login page displays. |
| Anchor | ||||
|---|---|---|---|---|
|
Exiting without Logging Out
As a best practice, we recommend that you always end your Universal Controller session by logging out before closing the browser or navigating away from the user interface.
...
For information on SAML Single Logout, see Single Logout in Single Sign-On Settings.
| Anchor | ||||
|---|---|---|---|---|
|
Log File and Audits
All user login and logout activity, whether via the user interface or a Universal Controller remote interface, is logged and audited (as a single audit type: User Login).
| Anchor | ||||
|---|---|---|---|---|
|
Log File Messages
Log file messages for login activity are in the following format:
...
| Panel |
|---|
2015-04-16-11:16:26:391 -0400 INFO [http-bio-8080-exec-5] Login OK <user=ops.admin, ipaddr=192.55.44.123> 2015-04-16-11:17:20:208 -0400 INFO [http-bio-8080-exec-10] Login Failed <user=ops.admin, ipaddr=192.55.44.123> 2015-04-16-11:16:57:442 -0400 INFO [http-bio-8080-exec-11] Logout OK <user=ops.admin, ipaddr=192.55.44.123> |
| Anchor | ||||
|---|---|---|---|---|
|
Audit Messages
Audit messages for login activity are in the following format:
...
| Note | ||
|---|---|---|
| ||
The IP Address of the user is not logged or audited for login activity via the Command Line Interface (CLI). |
| Anchor | ||||
|---|---|---|---|---|
|
User Sessions
| Note | ||
|---|---|---|
| ||
This action requires the ops_admin role or the ops_user_admin role. |
...
| Note | ||
|---|---|---|
| ||
If the following error appears in the Console while you are using the User Sessions feature, you may need to manually configure the opswise.mbean.catalina.manager.name Universal Controller start-up property: |
| Anchor | ||||
|---|---|---|---|---|
|
Send an Email to Logged In Users
From the User Sessions list, you can send an Email to:
...
| Note | ||
|---|---|---|
| ||
For local user accounts, each user must have assigned a valid email address. For AD/LDAP synchronized user accounts, each synchronized user must have a valid email address mapped to their user record. (By default, this should be true.) |
| Anchor | ||||
|---|---|---|---|---|
|
Send an Email to All Logged In Users
Step 1 | Click the Email All button on the User Sessions list. An Email pop-up dialog displays. |
|---|---|
Step 2 | Enter a Message and click the Send button. |
| Anchor | ||||
|---|---|---|---|---|
|
Send an Email to One or More Logged In Users
Step 1 | Select one or more users on the User Sessions list and right-click any of the selected users. The User Sessions actions menu displays: |
|---|---|
Step 2 | Click Email to display an Email pop-up dialog. |
Step 3 | Enter a Message and click the Send button. |
| Anchor | ||||
|---|---|---|---|---|
|
Expire User Sessions
| Note | ||
|---|---|---|
| ||
This action requires the ops_admin role or the ops_user_admin role. |
...