Setting up an eDirectory user account involves creating a User object and setting properties to control login and the user's network computing environment. You can use a template object to facilitate these tasks.
You can create login scripts to cause users to be connected automatically to the files, printers, and other network resources they need when they log in. If several users use the same resources, you can put the login script commands in container and profile login scripts.
This section contains the following information:
A user account is a User object in the eDirectory tree. A User object specifies a user's login name and supplies other information used by eDirectory to control the user's access to network resources.
This section contains the following information:
In Novell iManager, click the Roles and Tasks button .
Click Users > Create User.
Specify a user name and a last name for the user.
Specify a container to create the user in.
Specify any additional (optional) information you want, then click OK.
Click for more information on the available options.
Click OK.
After creating a User object, you can set up the user's network computing environment and implement extra login security features.
In Novell iManager, click the Roles and Tasks button .
Click Users > Modify User.
Specify the name and context of the User or Users you want to modify, then click OK.
On the General tab, select the Environment page.
Fill in the property page.
Click for more information on specific properties.
Click OK.
In Novell iManager, click the Roles and Tasks button .
Click Users > Modify User.
Specify the name and context of the User or Users you want to modify, then click OK.
On the Restrictions tab, fill in the property pages you want.
Click for details on any page.
Page | Description |
---|---|
Password Restrictions |
Sets up a login password. |
Login Restrictions |
|
Time Restrictions |
Restricts the times when the user can be logged in. If you set a restriction and the object is logged in when the restricted time arrives, the system issues a five-minute warning and then (after five minutes) logs the object out if it isn't logged out already.If the user will log in remotely, see Login Time Restrictions for Remote Users. |
Address Restrictions |
Restricts the network locations (workstations) that this user can log in from. If you don't set restrictions on this page, the user can log in from any network location. |
Account Balance |
Sets up an accounting of this user's server usage. |
Intruder Lockout |
Lets you work with this account if it has been locked because of intruder detection. To manage the intruder detection setup, use the Intruder Detection property page of the parent container. |
Click OK.
In Novell iManager, click the Roles and Tasks button .
Click eDirectory Administration > Modify Object.
Specify the name and context of a container object, then click OK.
On the General tab, select the Intruder Detection page.
Select from the following options:
Click OK.
A login script is a list of commands that executes when a user logs in. It is typically used to connect the user to network resources like files and printers. Login scripts execute on the user's workstation in the following order:
During login, if the system doesn't find one of these login scripts, it skips to the next one in the list. If none are found, the system executes a default script that maps a search drive to a folder on the user's default server. The default server is set on the Environment property page of the user object.
In Novell iManager, click the Roles and Tasks button .
Click eDirectory Administration > Modify Object.
Specify the name and context of the object that you want to create the login script on.
Click OK.
On the General tab, select the Login Script page.
Enter the login script commands you want.
See the Login Script Commands Guide for more information.
Click OK.
Associating a profile with a User object causes the profile's login script to execute during the user's login. Make sure that the user has Browse rights to the Profile object and Read rights to the Login Script property of the profile object.
See Viewing Effective Rights to an eDirectory Object or Property for more information.
In Novell iManager, click the Roles and Tasks button .
Click User > Modify User.
Specify the name and context of the User object that you want to create the login script on.
Click OK.
On the General tab, select the Login Script page.
To associate a profile object with this object, enter the name and context of the profile object in the Profile field.
Click OK.
On the Time Restrictions property page of a User object, you can restrict the times when the user can be logged in to eDirectory. (By default, there are no login time restrictions.) If you set a login time restriction and the user is logged in when the restricted time arrives, the system issues a warning to log out within five minutes. If the user is still logged in after five minutes, he or she is logged out automatically and loses any unsaved work.
If a user logs in remotely from a different time zone than the server processing the login request, any login time restrictions that have been set for the user are adjusted for the time difference. For example, if you restrict a user from logging in Mondays from 1:00 a.m. to 6:00 a.m. and the user logs in remotely from a time zone that is one hour later than the server, the restriction effectively becomes 2:00 a.m. to 7:00 a.m. for that user.
In Novell iManager, click the Roles and Tasks button .
Click Users > Modify User.
Specify the name and context of the User or Users you want to modify, then click OK.
On the Restrictions tab, click Time Restrictions.
Select from the following options:
Click OK.