Filter
Top Products
8-13
User Guide for Cisco Secure Access Control System 5.4
OL-26225-01
Chapter 8 Managing Users and Identity Stores
Managing Internal Identity Stores
.
Table 8-5 Users and Identity Stores > Internal Identity Store > User Properties Page
Option Description
General
Name Username.
Status Use the drop-down list box to select the status for the user:
• Enabled—Authentication requests for this user are allowed.
• Disabled—Authentication requests for this user fail.
Description (Optional) Description of the user.
Identity Group Click Select to display the Identity Groups window. Choose an identity group and click
OK to configure the user with a specific identity group.
Account Disable
Disable Account if Date Exceeds Check this check box to use the account disablement policy for each individual user. This
option allows you to disable the user accounts when the configured date is exceeded. This
option overrides the global account disablement policy of the users. This means that the
administrator can configure different expiry dates for different users as required. The
default value for this option is 60 days from the account creation date. The user account
will be disabled at midnight on the configured date.
Password Information
This section of the page appears only when you create an internal user.
Password must contain at least 4 characters
Password Type Displays all configured external identity store names, along with Internal Users which is
the default password type. You can choose any one identity store from the list.
During user authentication, if an external identity store is configured for the user then
internal identity store forwards the authentication request to the configured external
identity store.
If an external identity store is selected, you cannot configure a password for the user. The
password edit box is disabled.
You cannot use identity sequences as external identity stores for the Password Type.
You can change Password Type using the Change Password button located in the Users
and Identity Stores > Internal Identity Stores > Users page.
Password User’s password, which must comply with the password policies defined under System
Administration > Users > Authentication Settings.
Confirm Password User’s password, which must match the Password entry exactly.
Change Password on next login Check this box to start the process to change the user’s password when the user logs in
next time, after authentication with the old password
Enable Password Information
This section of the page appears only when you create an internal user.
Password must contain 4-32 characters
Enable Password (Optional) Internal user’s TACACS+ enable password, from 4 to 32 characters. You can
disable this option. See Authentication Information, page 8-5 for more information.
Confirm Password (Optional) Internal user’s TACACS+ enable password, which must match the Enable
Password entry exactly.