Help us improve your experience.

Let us know what you think.

Do you have time for a two-minute survey?

 

Adding a User

 

Use this procedure to add a user to the local RADIUS server database.

PSM provides you with an interface to add users to the local RADIUS server database. You cannot use this procedure to add a user to an external RADIUS server database. An external RADIUS server is any RADIUS server that is not the local, co-resident RADIUS server. Note that the local, co-resident RADIUS server can act as an external RADIUS server to other PSM servers.

The local co-resident RADIUS server can be used by both PSM and network elements for authentication and authorization of the same users. Since the privilege definitions for PSM and the network elements might differ, PSM automatically adds a set of equivalent privileges to the RADIUS database for that user (Table 1). For example, if you add a user with the NOC privilege, PSM automatically configures the user with the equivalent surveillance and viewer privileges as well.

Table 1: PSM Privilege Equivalencies

PSM privileges

BTI7000, BTI7800 privileges

BTI800 privileges

Administrator

superuser

admin

Service Provider

provisioning

operator

NOC

surveillance

viewer

Note

You can always bypass PSM and add users to the local RADIUS database directly through the interface provided by the RADIUS server. If you do this, the users can still be modified in PSM.

To add a user:

  1. Choose Edit >User Management from the main menu.

    The User Management window appears.

    The Locally Managed User column indicates whether the user is in the local RADIUS server database (yes) or in another RADIUS server database (no). Users configured in an external RADIUS server appear in this list if PSM is using an external RADIUS server for authentication.

  2. Right-click the Users row and choose Add User.

    The Add User dialog box is displayed.

  3. In the Add User dialog box, specify the following information.

    • Username

    • Password, can consist of alphanumeric characters and the following special characters:

    • Confirm Password

    • Role, one of:

      • Administrator - this role has complete access to all functions

      • Service Provider - this role allows the user to create services, and has the following limitations:

        • The Service Provider role can read, create, and update everything, except device discoveries and scheduled device discoveries

        • The Service Provider role cannot create new users.

        • The Service Provider role can update its own user record, but no other user records. It also cannot change its own role.

        • The Service Provider role cannot move network element group members.

        • The Service Provider role cannot delete anything except for Bandwidth Profile Templates, Class Map Profile Templates, Service Policy (and Map) Profile Templates, and Customers.

      • NOC - this role provides read-only access

    • First name of the user (optional)

    • Last name of the user(optional)

    • Email address for the user (optional)

    • Telephone number for the user (optional)

  4. Click OK.

    The user is added to the local RADIUS server database.