Creating additional Identity Manager Management Console administrators using the IM_AUTH_USER table
search cancel

Creating additional Identity Manager Management Console administrators using the IM_AUTH_USER table


Article ID: 9605


Updated On:


CA Identity Manager CA Identity Governance CA Identity Portal CA Risk Analytics CA Secure Cloud SaaS - Arcot A-OK (WebFort) CLOUDMINDER ADVANCED AUTHENTICATION CA Secure Cloud SaaS - Advanced Authentication CA Secure Cloud SaaS - Identity Management CA Secure Cloud SaaS - Single Sign On


It may be necessary to add additional sets of login credentials to your management console for a variety of reasons. This doc walks through the steps needed to manually add these accounts. 


By default, the directory that is used for authorization is the AuthenticationDirectory, which is a bootstrap directory used exclusively for login credentials for the management console. This directory exists as part of your IM Objectstore. You can find this directory in your management console under Directories. 

<Please see attached file for image>

2017-07-27 15_13_00-Management Console.jpg


Release: CAIDMB99000-12.6.8-Identity Manager-B to B


Create your user in the database. Log into your IM Object store and locate the dbo.IM_AUTH_USER table, this table will likely only have one or a few entries in it. It should look like this: 

<Please see attached file for image>

style="" src="/servlet/servlet.FileDownload?file=0150c000004AJfBAAW" alt="2017-07-27 12_07_13-najlu01-u162028 - Remote Desktop Connection.jpg" width="452" height="89">


You can add a new row and fill in the required information, you'll need a username, password, disabled status and an ID. Set the disabled status to 0 and the ID to a unique number. The password can be put in as plain text but should be encrypted for security purposes. 


Generate the encrypted password with the password tool: 

The password tool is installed with the CA Identity Manager tools in the following location:

Windows: C:\Program Files\CA\Identity Manager\IAM Suite\Identity Manager\tools\PasswordTool

UNIX: /opt/CA/IdentityManager/IAM_Suite/Identity_Manager/tools/PasswordTool


Run the password tool using the following command:

pwdtools -JSAFE -p yourPassword

<Please see attached file for image>

style="" src="/servlet/servlet.FileDownload?file=0150c000004AJfCAAW" alt="2017-07-27 15_09_19-najlu01-u162028 - Remote Desktop Connection.jpg" width="673" height="343">

Copy this password and use it to create the new row. 

<Please see attached file for image>

style="" src="/servlet/servlet.FileDownload?file=0150c000004AJfEAAW" alt="2017-07-27 15_21_26-najlu01-u162028 - Remote Desktop Connection.jpg" width="447" height="108">


Now that the user exists, go to your management console and add them in the directory. 

<Please see attached file for image>

style="" src="/servlet/servlet.FileDownload?file=0150c000004AJfFAAW" alt="2017-07-27 15_22_33-Management Console.jpg" width="1080" height="408">

Select Update Authentication, add the user and click save. 

<Please see attached file for image>

style="" src="/servlet/servlet.FileDownload?file=0150c000004AJfGAAW" alt="2017-07-27 15_24_33-Management Console.jpg" width="1092" height="148">

Your new user should now appear under Management Console Administrators and can be used to log into the management console. 

<Please see attached file for image>

src="/servlet/servlet.FileDownload?file=0150c000004AJfHAAW" alt="2017-07-27 15_37_08-Management Console.jpg" width="1093" height="426">


1558702500960000009605_sktwi1f5rjvs16pw1.jpeg get_app
1558702499179000009605_sktwi1f5rjvs16pw0.jpeg get_app
1558702497321000009605_sktwi1f5rjvs16pvz.jpeg get_app
1558702495629000009605_sktwi1f5rjvs16pvy.jpeg get_app
1558702493916000009605_sktwi1f5rjvs16pvx.jpeg get_app
1558702492187000009605_sktwi1f5rjvs16pvw.jpeg get_app
1558702485050000009605_sktwi1f5rjvs16pvv.jpeg get_app