Synchronizing users and groups in Decision Center

After you authenticate the users through the webSecurity.xml user registry, you must create or import these users in the Decision Center database and organize them in groups according to your needs.

About this task

In Decision Center, authentication of business users does not need a group to be declared in the basic registry because all users are authenticated as rtsUser through the <ALL_AUTHENTICATED_USERS> Liberty server feature. LDAP groups can be used to filter the search for users to authenticate.

Before any other types of users can log in to the Decision Center consoles, you must create or import these users to the Decision Center database and place them in their groups. Having users and groups in the database is necessary to enforce security access to the different decision services on which users work.

To create or import users and groups into the database:

1. Log in to the Decision Center Business console as your super user (odmAdmin or rtsAdmin).
2. From the Administration tab, take one of the following actions.
   1. Add new users for all of the users that are defined in your authentication registry (webSecurity.xml file), add the groups, and include their members.

      The users and groups that you add in this way are identified by the text (manually created).

   2. Create a connection to the LDAP from the Decision Center Business console, and then import the groups and users from the Groups tab.

      In the Connection Settings tab, click the New Connection icon , enter the connection details, and click Create.