Definition
Nodeum provides User Management for two type of purposes:
- Access to the Web Management GUI interface and associated REST services
- Access to the Container
Both configurations are done in the User Management section of Nodeum WebGUI in system / User Management.
Web Management
For each user define a role :
- Administrator role
- End-user role.
By default, each user is defined as a end-user and have no rights and privileges.
- Click on the button '+' to add new user
- Choose a role for the User (administrator or Standard User)
- Complete these information:
- User Name: Name of the User you would like to create
- Password: Password for this User
- Confirm Password: Retype the password to confirm it
Container
Container access privileged are managed per container. The page System / User Management / Container display the list of users and groups available. It is also where the authentication mode can be defined.
Three types of authentications are available:
- Use the local users and groups user management;
- Connect Nodeum to an Active Directory;
- Connect Nodeum tor LDAP service.
Create Local User & Group
Just follows these steps :
- Click on the button '+' to add a new user
- Complete this information and save it:
- User Name: Name of the User you would like to create.
- Password: Password for this User.
- Confirm Password: Retype the password to confirm it.
- Optional: Select the group you want this user associated with.
For creating a new group, you have to go to the according tab "group"
Just follows these steps :
- Click on the button '+' to add a new group
- Complete this information and save it:
- Group Name: Name of the Group you would like to create.
- Select the user(s) you want to include in this group.
Generate S3 policy for a local User
It is possible to generate a S3 policy for any defined local user to activate a S3 access to a container.
The procedure is to create the user as defined in the previous section. Once done, you have to edit it and follow these steps:
- In this panel, you will see the URL and credentials required to access the S3 object storage console available. Copy in your clipboard the available S3 policy generated.
- Access the Minio Console url in using the Root User and Root Password available. Create through the Access menu a new policy and paste the policy from the clipboard.
- Then, create a user, define your own password, and attach the defined policy to this user.
- Once done, you are ready to access the Container through S3 with the user you have created. By default, the access to the Container in S3 are done through the port 9000.
Configure the Authentication Services
The default configuration is to use local user and group settings. The two others options are available to connect to either Active Directory or LDAP service
Active Directory
The configuration allows to define a connection to an Active Directory in defining the following sections.
The "Test connection button" will allow the validation of all settings before saving it. The "save button" will confirm the connection to the selected Active Directory server and join the Nodeum server into the Active Directory Domain.
LDAP
This last configuration allows to define a connection to an LDAP service. The "Test connection button" will allow the validation of all settings before saving it. The "save button" will confirm the connection to the selected LDAP server.
Nodeum open access to Container in SMB, NFS or S3. Don't forget to give access to this container to the specific user "with S3 enable", with the appropriate permissions
If needed, you can always retrieve the S3 access key, just edit the user. Secret key can be regenerated if the key has been forgotten.
%20W%26G%20Dark%20Back_150px.png?width=70&name=Nodeum(Single)%20W%26G%20Dark%20Back_150px.png)
Let Us Know What You Thought about this Post.
Put your Comment Below.