Creating a User

On the Add User page, you can create a new user for a company.

    Procedure
  1. Log in to TIBCO MDM.
  2. Click Administration > User Accounts.
  3. On the User Accounts page, click Create.

  4. On the Add User page, enter different types of details in the following sections for the user being created:
    5. Section Description
    Add User

    Define basic details, such as the Username, First Name, Middle Name, Last Name, Password, and Partitioning Key.

    Note: The Username can accept the following special characters as a part of the name:

    * (asterisk)

    . (period)

    - (minus)

    @ (at)

    / (Forward Slash)

    \ (Backward Slash)

    These special characters are accepted when you enter the username while adding permissions, roles, users. These can be used when referring to the username in a dataset of a File Watcher and also while referring to the username in a workflow.

    Select the required Security Type from the list:

    Password: User defined password. See Characteristics of Strong Password and Password Restrictions.
    LDAP: LDAP-based authentication where password is not stored within the application. If you choose the LDAP security type:

    The user must already exist in the LDAP directory server.

    Certain properties need to be configured in the application.yaml file. Refer to the TIBCO MDM System Administration for details. When this security type is selected and the user attempts to log in, then the user is searched in the existing user list of the LDAP directory server. If the user is not found, an error is displayed. Else, the user is created for the selected company using this security type.

    If LDAP is selected as the security type, the Password fields do not get displayed as LDAP server does not require a password for authentication.

    Note: If LDAP authentication is selected while configuring the server, the following 3 options are available: None, Simple, and Strong. If the administrator selects None, the password is not authenticated but the user must type something in the Password field. If Simple or Strong is selected, the password typed in the login page is authenticated using the LDAP server.
    Roles

    Each user in TIBCO MDM is assigned roles that control the user’s access and privileges. You can assign any user one or more predefined roles.

    • To assign a single role, select one from the Available Roles list and click ">" to move it to the Selected Roles list.
    • To assign multiple roles, press Ctrl and click roles from the Available Roles list and click '>' to move the selected multiple roles to the Selected Roles list.
    • To assign all roles, click ">>". All roles are moved to the Selected Roles list.
    An assigned role is no longer be available in the Available Roles list, once it has been assigned to the user.

    To know the available predefined roles, see Roles. For information about the access rights defined for each role, see User Role Matrix .

    Delegation Profile
    1. Specify the delegation profile of the user. You can forward work items assigned to you to another user. The users are available for selection depending on their roles and privileges. To activate the delegation profile, you need to specify how the delegation is activated and deactivated and whether to send notification when work is delegated.

    2. Using the delegation and reassignment feature, you can control delegation and reassignment of work items from one user to another.

      Delegation and reassignment is based on a list of specified user roles and their related access privileges. A delegation profile is used to limit the roles and users to whom work can be reassigned.

      For each organizational role, the TIBCO MDM administrator specifies which roles can be delegated by another role. When a user attempts to reassign a work item, the action is limited to a select list of user roles. Only users with the appropriate roles and access privileges are shown as possible candidates for the reassignment.

    Locale Settings

    Specify the locale setting details in the following fields:

    • Language and Country: Select the language and country.
    • Date Format: Select a date format from the drop-down list. The supported formats are:
      • MM/DD/YYYY
      • DD-MON-YYYY
      • MM/DD/YY
      • DDMMYYYY
      • YYYY-MM-DD
      • YYYY/MM/DD
      • DD-MM-YYYY
      • DD/MM/YYYY
      • DD-MM-YY

      All date fields on the pages are displayed in the selected format for this user.

    • Time Format: Select a time format from the list. The supported formats are:

      hh:mm:ss (24 hours)

      hh:mm:ss AM/PM (12 hours)

      All time fields on the pages are displayed in the selected format for this user.

      Note: If you do not select the date or time format, the default format is selected from the Configurator. By default, the MM/DD/YYYY and hh:mm:ss formats are specified for the Default Display Date Format and Default Display Time Format properties respectively. However, if you have specified the date or time format using UI, the selected date and time format take precedence over the application level configuration.
    • Timestamp Format: Select a timestamp format from the drop-down list. The supported formats are:
      • YYYY-MM-DD hh:mm:ss.S – Time is displayed in 24 hours format with milliseconds. S indicates milliseconds.
      • YYYY-MM-DD hh:mm:ss.S AM/PM – Time is displayed in 12 hours format with milliseconds.
      • YYYY-MM-DD hh:mm:ss.S z – Time is displayed in 24 hours format with milliseconds and time zone. Z indicates time zone. By default, the system time zone is displayed.
      • YYYY-MM-DD hh:mm:ss.S AM/PM z – Time is displayed in 12 hours format with milliseconds and time zone.
      Note: If you do not select the timestamp format, the default format is selected from the Configurator. By default, the YYYY-MM-DD hh:mm:ss.S format is specified for the Default Display Timestamp Format property. However, if you select the timestamp format using UI, the selected timestamp format takes precedence over the value that is specified for the Default Display Timestamp Format property.
    • Time Zone: Select the time zone specific to your region from the drop-down list. If you do not select any time zone, the system time zone is applicable.
    Security Questions
    1. Select a security question from the Question 1 list. If you do not want to use a predefined question, select Others from the list.
    2. If Others selected, enter your own question.
    3. Enter a secret answer to the question.
    4. Select the Show answer check box if you want to display your answer in the text box.
    5. Repeat the step a to d for the Question 2 field. However, you must select a different question from the Question 2 list.

    By default, two security questions are displayed. However, if your system administrator has configured more number of questions to be displayed on the Add Users page, then repeat the step a to d for all questions.

    Caution: For the successful user creation, selecting security questions and answering them is mandatory.

    The security questions are asked when resetting the password.

    Restriction: The security questions are not applicable for the single sign-on and LDAP login.
    User Defined Fields

    Show Record Attribute Help?: Enter Y or N to activate the mouse over display of Help in the record add, modify, and copy pages. The default (if no data input is provided here) is to display the Help.

  5. Click Save to save user creation details.