Updating Users in Supervisor

Hello Forum… I hope someone can help me.

Last week, my “SA” told me that I need to update ALL 170 WebInt Users. It seems my team hasn’t been following acceptable company password formats.

So, I exported my Users from Supervisor quite easily. Now, I want to create new passwords and Update these Users.

1. Can I simply use the same Export file for my Import? The Supervisor’s Guide seems to use a diferent format in their examples than a typical “flat” csv file. (Unless I’m misinterpreting the sample Import file).

2. Once I figure out the correct format, can I input “ASCII” characters for the passwords and include the ENCRYPTED_PASSWORD parameter in my Import File, resulting in encrypted passwords stored in my Repository?

I’ve never done this before so any (and all!) assistance is most welcome!
Thank you!

CNV_Ben (BOB member since 2002-08-15)

Ben,

If I were to upgrade that number of users, I would set a “GENERIC” password and then update all of the WEBI accounts in the REPOSITORY to have this “GENERIC” value. I’d then force the password to expire the first time a user logs in. That will cause all users to set a password of their choosing the first time they connect, and will use all of the (length) restrictions that you set for the password.

There is currently not a way to force the more advanced password criteria within BO. (Numbers, no repeats, no dictionary words, etc…)

-RM

digpen (BOB member since 2002-08-15)

Continuing with this topic…

I must confess I really don’t fully understand how to import User information. Can anyone provide a (reasonably simple) procedure I could follow?

Thank you!

CNV_Ben (BOB member since 2002-08-15)

Ben,

I’ve done this quite a few times. It’s really quite simple. First of all, the first column in your csv file needs to be ‘UU’ since you are updating the users, not creating new ones. I suggest that you set the ‘Change Password At First Login’ column to ‘Y’, so the users are forced to create a new password. And since the passwords that your entering in your file are not encrypted in your file, then you should use the NO_ENCRYPTED_PASSWORD command. Let me know if you have any other questions. This is a fairly simple task.

MichaelWelter (BOB member since 2002-08-08)

Here’s a snippet from a script I use all the time for changing the password on our UAT and Training users. I just change the password to something else and run the script while in Supervisor. (We find that users try to use the test logins instead of their own if you don’t change the password!)

The # allows comments in the file, so if someone else needs to do this when I am no longer around, they can figure out what I was doing.

Hope it helps!

# Replace password with the new password for 
#   each line in this file before updating
#   the users for the next group of testers
# Parameters are password: password
# Profile: U = User
# Disable Login: N
# Enable Offline Login: N
# Enable Password Modification: N
# Enable Real Time User Rights Update: Y
# Enable Delete Document: N
# Object Security Level: PC = Public
# Identification Strategy: F = Full
# Change Password At First Login: N
# Periodic Action: N
#
UU, Test Group A, Student01, , password, U, N, N, N, Y, N, PC, F, N, N
UU, Test Group A, Student02, , password, U, N, N, N, Y, N, PC, F, N, N
UU, Test Group A, Student03, , password, U, N, N, N, Y, N, PC, F, N, N
#

rls.

Rhonda Smart (BOB member since 2002-08-20)

OK, hopefully I’m nearing the end of my questions on this topic!

Here are the first few lines of my Import file. I wonder if anyone can tell me if this looks correct or if I’ve done something incorrectly?

What I’m trying to accomplish is change multiple existing Users’ profiles to keep their existing passwords, but prompt them to change those passwords the next time they log in.

A couple of questions I still have:
Should I be using the “*” in the password field, or should I keep the encrypted password information as it was originally exported? Is there a difference? The Group and User names have been changed in the interest of anonymity.

Where will Supervisor write it’s Log and Undo files?

How would I execute a Batch file if I so desired? Do I just create this as a “.bat” file or is there more to it than that?

My “client” is Win98; my Repository is Oracle 8.1.6.0.0; my Cluster Manager is Sun Solaris 2.8

Thanks again for any assistance!
Ben

#Import user/group configuration of repository accessed by BOMain.key
#
# Global Commandss:
INTERACTIVE
LOG
UNDO
encrypted_password
#
# Parameters:
#  Update User
#  User's GROUP
#  Current User Name, New User Name
#  Password (* = Keep Existing Value)
#  Profile; u = User
#  Disable Login = N
#  Enable Offline Login = Y
#  Enable Password Modification = Y
#  Enable Real Time User Rights Update = Y
#  Enable Delete Document = Y
#  Object Security Level = Public
#  Identification Strategy = Full (always verify password)
#  Change Password at First Login = Y
#  Password Validity Days = 180
#  Periodic Action = Y 
##
uu,Group A,user_1, ,*,u,no,yes,yes,yes,yes,pc,f,yes,180,yes,
uu,Group B,user_1, ,*,u,no,yes,yes,yes,yes,pc,f,yes,180,yes,
uu,Group A,user_2, ,*,u,no,yes,yes,yes,yes,pc,f,yes,180,yes,
uu,Group A,user_3,*,u,no,yes,yes,yes,yes,pc,f,yes,180,yes,
uu, Group A, user_4, ,4xW=_yrzKy3zh5,u,no,yes,yes,yes,yes,pc,f,yes,180,yes,
uu,Group A,user_5, ,3ynziM_H*yjy6,u,no,yes,yes,yes,yes,pc,f,yes,180,yes,
uu,Group A,user_6, ,2u^WVzJy5Zym,u,no,yes,yes,yes,yes,pc,f,yes,180,yes,

CNV_Ben (BOB member since 2002-08-15)

Ben,

Yes, this looks correct to me. In Supervisor, go to File - Import. Import this file. Each user will be imported as an update, since you’ve begun each line with ‘UU’.

MichaelWelter (BOB member since 2002-08-08)

I will be importing password changes but I will not know to which group the user belongs. I’ve considered doing it like this…

#Temporarily add user to a group for password change purposes...
AG,Temp Group,Cindy,U
#Update the user's password now that I know he is a member of the 'Temp Group'...
UU,Temp Group,Cindy,*,NewPassWord,*,*,*,*,*,*,*,*,*,*,*
#Remove the user from the 'Temp Group'
RG,Temp Group,Cindy

Clunky but functional. Alternatives?

Cindy Clayton (BOB member since 2002-06-11)

In response to Cindy’s last posting, I’ve never been real clear how to ADD Encrypted passwords to Users via the Import utility. If I include a password as regular old text, does BO somehow encrypt that text upon Import?

Also, when I’ve created large #s of Users in the past, I’ve had to manually go into InfoView and set up their default page, document views, etc. Then, go back into Supervisor and update those User Properties so they don’t have access to changing their Viewing Options. Is there a way to do this via “bulk” import as well? Or is there some other, more streamlined method than the one I’ve described?

Thanks!!

CNV_Ben (BOB member since 2002-08-15)

Yes, it does.

I don’t think so. Permisions aren’t imported, they should be set at the group level, then import users to the group where you want them, according to the permissions they should have.

MichaelWelter (BOB member since 2002-08-08)

You sure can. Look here.

Cindy Clayton (BOB member since 2002-06-11)