13.1.1.4.1. Procedure – Editing user privileges in ZMS

1. Navigate to the Management server component of the host running ZMS, and select the auth parameter from Global parameters.

2. Select the username whose privileges are required to be edited.

3. Click Set rights.

   Note
   To change the password of the user, click Edit.

4. Select the privileges required to be granted to the user. A user can have none, any, or all of the following privileges:

   • Modify configuration: Modify and commit the configuration of the hosts. The user can perform any configuration change, and commit them to the ZMS database, but cannot activate the changes or control any services or components.

   • Control services: Start, stop, reload, or restart any instance, service, or component. This right is required also to upload configuration changes to the hosts.

   • PKI: Manage the public key infrastructure of Zorp: generate, sign, import and export certificates, CAs, and so on.

   • Log view: View the logs of the hosts.

   To create a 'read-only' user account for auditing purposes, do not select any privileges.

   To create a user account with full administrator rights, select every privilege.

5. Click OK, commit and upload the changes, and reload the Management server component.

   

   Figure 13.6. Edit user privileges