Synchronizing users and groups in Decision Center

You must create or import the users in the Decision Center database and organize them in groups according to your needs.

About this task

In Decision Center, authentication of business users does not need a group to be declared in the basic registry because all users are authenticated as rtsUser through the <ALL_AUTHENTICATED_USERS> Liberty server feature. But you can disable this feature by setting odm_configuration.decisionCenter.disableAllAuthenticatedUser=true in the CR file. LDAP groups can be used to filter the search for users to authenticate.

Before any other type of users can log in to the Decision Center Business console, you must create or import these users to the Decision Center database and place them in their groups. Having users and groups in the database is necessary to enforce security access to the different decision services.

Procedure

Note: The following steps take place after an installation of Operational Decision Manager.
To create or import users and groups into the Decision Center database:

  1. Log in to the Decision Center Business console as an administrator.
  2. From the Administration tab, take one of the following actions.
    1. Add new users for all of the users that are defined in your authentication registry (webSecurity.xml file), add the groups, and include their members.

      The users and groups that you add in this way are identified by the text (manually created).

    2. Create a connection to the LDAP from the Decision Center Business console, and then import the groups and users from the Groups tab.

      In the Connection Settings tab, click the New Connection icon New Connection, enter the connection details, and click Create.

      New LDAP connection