Manager Settings

Complete the following steps to configure manager's security settings:

1. Sign in to the Operator Control Panel.
2. On the Navigation Bar, click Settings > Configuration > Security Settings.
3. Click the Manager settings tab. 
   
   
    

4. In the SignOn method list, select one of the following items:
   

LDAP/AD

If the LDAP/AD item was selected in the SignOn method list:

1. In the Admin Dn field, enter a name of the administrator in LDAP/AD (for example, uid=admin,ou=Admins,dc=ldap,dc=activecloud,dc=com).
2. In the Admin Dn field, enter a password for the administrator.
3. In the  Host field, type a host in order to connect to the database for authentication.
4. In the  Port field, type a port for connecting to the database.
5. In the  User Search Filter field, enter a parameter that is used to find manager's login to the Operator Control Panel. This parameter is used to find a manager in LDAP/AD and check a password.
6. In the  User Search Base field, enter a search base for managers.
7. You can activate SSL connection if you switch On the Enable SSL.
8. You can activate verifying the SSL certificate if you switch On the Verify SSL certificate.
9. In the Attributes synchronisation group, set mapping the following manager's attributes with LDAP/AD attributes:
   • Email - a field name in LDAP/AD that stores manager's email;
   • Name - a field name in LDAP/AD that stores manager's name;

   If the manager’s login was changed in Active Directory (AD), which is used by Operator (Reseller), the email (login) is synchronized in ActivePlatform.

10. In the Role's synchronisation group, set mapping the following manager's roles with LDAP/AD attributes:
    • Activate — activate the roles' synchronisation;
    • Role - a field name in LDAP/AD that stores manager's role;
    • Default role - select the role of the Manager in the ActivePlatform by default.
11. Click Update to save changes.
     

OAuth 2.0

If the OAuth 2.0 item was selected in the SignOn method list:

1. In the Admin Dn field, enter a name of the client of the OAuth server.
2. In the OAuth Client Secret field, enter a secret key, which is used by the client of the OAuth server.
3. In the OAuth Authorize Url field, enter a URL that is used if the manager tries to log in to the Operator Control Panel.
4. In the OAuth Get Access Token Url field, enter a URL that is used to get the access token.
5. In the OAuth Get Profile Url field, enter a URL that is used to get manager's profile using the access token. The answer to this request contains a set of data including manager's ID in OAuth. This ID is used to define a manager, which will get access to the ActivePlatform (manager ID must be entered as the "CAS user" attribute in OAuth for all managers).
6. Click Update to save changes.
   
   

Embedded

If the Embedded item was selected in the SignOn method list:

1. To configure the login rules to the Operator Control Panel, set the following options in the Login rule group:
   1. Set the Activate switcher in On.
   2. In the Login attempts field, enter a number of attempts to log in whit a wrong login or password.

   3. In the Login unlock interval, minutes field, enter a period in minutes when a new attempt of logging in will be available.

2. To configure the expiration rules of the password, set the following options in the Password expiration rules group:
   1. Set the Activate switcher in On.
   2. In the Password Days to Expire field, enter a number of days when the manager must change the password.

   3. In the Notice Days field, enter a number of days before the password expiration when a manager gets the notification about the password expiration.

3. To configure the deactivation rules for the manager, set the following options in the Deactivation rules group:
   
   1. Set the Activate switcher in On.

   2. In the Expire after Days field, enter a number of days after the last manager login when the manager will be deactivated.

4. Click Update to save changes.