The following covers adding a user account, either by adding a Client Certificate Account or an OAuth User Account.

Adding a Client Certificate Account

To create a new client certificate user account for the Software Appliance:
  1. Log in to your Software Appliance and open the Access page.
  2. In the section User Accounts, click the button Add User Account to open the corresponding form.
  3. For  Authentication Type, select the option Client Certificate.
  4. In the section Certificate Details, select the desired X.509 Match Type.
    Default and recommended match type is the Certificate serial number.
  5. Specify the Match Value for the selected Match Type.
  6. Click Add User Account to confirm your entries and add the account.

Secure account management

  • You need to add at least one trusted CA and the corresponding certificate before you can add a Client Certificate account.
  • The Software Appliance prevents you from from locking yourself out of the system. For example:
    • The Remove button is only active if you can still log into the Software Appliance after removing the account.
    • For a client certificate account you need to add the correct Match Type for the first Match Value rule that you specify.

Adding an OAuth User Account

To create a new OAuth user account for the Software Appliance:

  1. Log in to your Software Appliance and open the Access page.
  2. In the section User Accounts, click the button Add User Account to open the corresponding form.
  3. For  Authentication Type, select the option Internal OAuth Provider.
  4. In the section Credentials, specify the Username.
    Username rules are the following:

    • 3 characters minimum with at least 1 alpha-numeric character
    • 64 characters maximum
  5. Specify the Password for the new user account and repeat it for confirmation.
    Password rules are the following:

    • 8 characters minimum
    • 64 characters maximum
  6. Click Add User Account to confirm your entries and add the account.

Secure account management

  • You need to add at least one trusted CA and the corresponding certificate before you can add a Client Certificate account.
  • The Software Appliance prevents you from from locking yourself out of the system. For example:
    • The Remove button is only active if you can still log into the Software Appliance after removing the account.
    • For a client certificate account you need to add the correct Match Type for the first Match Value rule that you specify.

Next Step: Remove OTP User

Next, remove the Initial OTP user to avoid security issues, see Step 2 - Remove OTP User.