The User Manager lets you create users that have individually tailored access to portions of the ColdFusion Administrator, the Administrator API, or RDS access.
Note: To grant ColdFusion Administrator permissions to multiple users, in addition to creating users on the User Manager page, you must select the Separate Username And Password Authentication option on the Security > Administrator page. Similarly, you must select the Separate Username And Password Authentication option on the RDS page to grant RDS access to multiple users.
Enter the username.
Enter and confirm the user's password.
Optionally, enter a description.
Select from the following options:
Allow RDS access
Allow Administrative access: Select one of the following:
Administrator Console & API Access
API Access Only
Select the ColdFusion Administrator pages that you want the user to be able to access.
Select any sandboxes that you want the user to be able to access.
Select the services that you want the user to be able to access.
Click Add User.
Note: To select multiple contiguous sandboxes or roles, press the Shift key while making selections. To select multiple non-contiguous sandboxes or roles, press the Control key while making selections.
After you create a user, you must log into the ColdFusion Administrator using both a username and password. The default username for the root administrator is admin. To change it, you must edit the neo-security.xml file by changing the string "admin" in admin.userid.root, as follows:
<var name="admin.userid.root">
<string>admin</string>
</var>
When you grant access to specific Administrator pages, the user sees only those pages after logging in to the Administrator. When you grant Administrator API access and select roles, the user can access the API only for the pages you specified.
For information editing existing user configuration, see Edit User Configuration.
If you change the pages or sandboxes to which a user is allowed access while that user is logged in to the Administrator, the changes take effect only after the user logs out, and then logs in again.
For details about creating sandboxes, see Configure ColdFusion security.
ColdFusion exposes existing enterprise services as web services. You can access these services using SOAP and AMF/Flash remoting. You can select the services available to a user from the Exposed Services section. By default, all the services are listed in the Allowed Services list box. Press CTRL and select the services that you do not want the user to avail and click the >> button. Now, click Edit User to implement the changes to the user settings.
The following are the exposed services:
Allowed Services:
· Mail Service
· Document Service
· PDF Service
· Image Service
· Chard Service
· POP Service
Prohibited Services:
· Exchange Service
You can secure the exposed services to prevent access by unknown applications or users. This can be done by configuring the client IP address range to which services are accessible. Also, you can set up user access control for the services.
On the Security > User Manager page, you can select the services available to a user from the Exposed Services section.
By default, all the services are listed in the Prohibited Services list box.
Press CTRL and select the services that you want the user to avail and click the << button.
Now, click Edit User to implement the changes to the user settings.