Create a Local User

  1. Select > Local Users.
    The LOCAL USERS page displays.
  2. Click Add User.
    The NEW USER page displays.
  3. Select the User Status.

  4. Enter a Username.

    Note:  Username must only contain lowercase letters, numbers and _ . -

  5. Enter a Description.

  6. Enable or disable the Remote Password Only feature.

    • Select Enabled for Remote Password Only to use external AAA server for password.

    • Select Disabled for Remote Password Only to create password for the user.

      1. Enter the Password.
      2. Re-enter to Confirm Password.

  7. To add a SSH Key:

    1. Click Add SSH Authentication Key.
      The ADD SSH AUTHENTICATION KEY dialog displays.
    2. Enter the SSH public key for the user.
    3. Click Add Key.

  8. Under the GROUPS section, manage the user groups the user will be assigned.

    1. Click Add Group,
      The ADD GROUPS dialog displays.
    2. With the checkboxes, check groups to add the user to.
    3. Select the role name to view the details of the role and the operation permissions associated with the role. Click < Back to return to the ADD ROLES dialog.
    4. Click Add.

  9. Review the PERMISSIONS SUMMARY section.
    This section displays how permissions are derived based on the selected roles for both CLI and OPERATION permissions.
  10. Click Apply.

Create User Event Logs

When a new user is created, an entry is added to the syslog that indicates the name of the new user, the user that performed the operation, database queries, and the time that it occurred:

2020-05-22T16:22:46.490627+01:00 localhost rest_api_log[62]: GET 200 (root | 192.168.1.230) - /api/v3.5/users?page=1&per_page=10 RESPONSE={'users': [{'username': 'root', 'description': 'System wide SuperUser account', 'enabled': True, 'id': 'users-1', 'no_password': False, 'expired': False, 'locked_out': False, 'rights': {'delete': True, 'modify': True}, 'groups': ['groups-2']}, {'username': 'fred', 'description': 'fred', 'enabled': True, 'id': 'users-2', 'no_password': False, 'expired': False, 'locked_out': False, 'rights': {'delete': True, 'modify': True}, 'groups': ['groups-2']}], 'meta': {'total_pages': 1}}

If the created user is set to disabled, the configurator_users message does not appear as they have not been added to the passwords file. To access the syslog from Lighthouse, click > Generate Technical Support Report.