Skip to main content

PARTNERS

Managing user accounts

Before creating a user account, make sure you have the required email address at hand. This address is mandatory for creating a GravityZone user account. Users will receive their GravityZone login details at the supplied email address. Users will also use the email address to log in to GravityZone.

Managing user accounts individually

You can create, edit and delete user accounts individually from the Accounts page in the Control Center.

Creating a user account

To add a user account in Control Center:

  1. Log in to the GravityZone console.

  2. Go to the Accounts page.

  3. Click the Add account button in the upper left side of the page.

    A configuration window will be displayed.

  4. Under the Details section, fill in the following details:

    • Email - the user's email address used to log in to Control Center.

      Note

      The email address must be unique.

      Reports and important security notifications are sent to this address. Email notifications are sent automatically whenever important risk conditions are detected in the network.

    • Full name - the full name of the account owner.

    • Company - select the company you want the user to belong to.

    • Timezone - select the timezone of the account. The console will display time information according to the selected timezone.

    • Language - select the console display language.

    gz_accounts_add_details_cl_pr_271561_en.png
  5. Configure the policy settings under the Login Security section:

    • Set maximum password age to 90 days - enable or disable the password expiration policy.

      When enabled, the password associated to the account expires 90 days after it is created. The user needs to change the password before this time passes, or they will be locked out of GravityZone.

    • Lockout accounts after 5 login attempts with invalid passwords - when enabled, locks the account after 5 login attempts are made using an incorrect password.

    gz_accounts_add_login_security_271561_en.png

    Note

    If an account is locked, the user will have to reset their password. Alternatively, this action can also be taken by an administrator.

  6. Under the Role privileges section, configure the following settings:

    • Role - select the role you want to assign to the user. The role determines what rights the user will have.

      Note

      For more information on user roles, refer to User Roles.

    • Rights - select what rights you want the user to have.

      Each user role has a predefined configuration of rights. You can assign the user a specific combination of rights by selecting Custom under Role.

      Note

      For more information on user rights, refer to User rights.

    gz_accounts_add_role_privileges_271561_en.png
  7. Under Select Targets, select the network groups the user will have access to for each available security service. You can restrict the user access to a certain GravityZone security service or to specific areas of the network.

    Note

    The target selection options will not be displayed for users with Manage Solution right, which, by default, have privileges over the entire network and security services.

    Important

    Whenever you make changes to your network structure, or when setting up a new integration with another vCenter Server or XenServer system, remember to also review and update access privileges for existing users.

    gz_accounts_add_select_targets_271561_op_en.png
  8. Under Select targets, select the companies and network groups the user will have access to. You can restrict user access to specific network areas or to specific companies.

    gz_accounts_add_select_targets_271561_pr_en.png
  9. Click Create to add the user.

    Note

    The password for each user account is automatically generated once the account has been created, and sent to the user's email address along with the other account details.

    You can change the password after the account has been created. Click the account name in the Accounts page to edit its password. Once the password has been modified, the user is immediately notified via email.

    Users can change their login password from Control Center, accessing the My account page.

The new account will appear in the user accounts list.

Editing a user account

To edit user account in Control Center :

  1. Log in to Control Center.

  2. Go to the Accounts page.

  3. Click the Full name.

  4. Change user account details and settings as needed.

    Note

    Under Login Security, you can view the status of the two-factor authentication (2FA) setting. This option is either enforced company-wide , or the users can set it themselves.

  5. Click Save to apply the changes.

    Note

    All accounts with the Manage Users right can create, edit and delete other user accounts. You can only manage accounts with equal or fewer privileges as your own account.

Deleting a user account
  1. Log in to Control Center.

  2. Go to the Accounts page.

  3. Select the user account from the list.

  4. Click the Delete button at the upper side of the table.

  5. Click Delete to confirm.