This article provides brief STEP guidance, without commentary, for Simple Administration Walkthroughs.
Scope
This BRIEF encompasses STEP guidance for the Simple Administration Walkthroughs:
- Migrate to an Organization - Migrate your Test Account to create an Organization
- Provision, Validate, Dismiss - Provision and onboard new Organization Accounts
- Default Folders, Sign-Up, Profiles- additional administrative activity for Organizations/ Accounts
For more verbose insight and commentary, skip this BRIEF and start with the first article in the above-noted sequence.
Videos
The following videos match the steps in this article.
Part 1
Part 2
Part 3
Prerequisites
This article assumes you have previously worked through the Walkthroughs, BRIEF: Intro STEPs. and, BRIEF: Common Tasks.
Migrate your Individual Test Account to Create an Organization
STEP 1: Login to your Test Account then navigate to the License and Components dialog from the notification icon's context menu:
STEP 2: Click Convert to begin the process of Migrating to an Organization, then enter the appropriate Organization Name as gmail-<account>_t1, where <account> is the Gmail email address Username used to alias your Test Account Username:
With success, you will be redirected to the Login dialog. If this is not the case, refer to the Walkthrough, Migrate to an Organization for corrective details.
Verify Your New Organization
STEP 3: From the Login dialog, choose your Profile from the dropdown then enter your Password. Login to proceed. You should be presented with acknowledgment:
STEP 4: Dismiss the notification to continue.
If you do not see this prompt, refer to the Walkthrough, Migrate to an Organization for corrective details.
Organization Key Export
When you create a new Organization, you will be prompted to Export your Organization/ Account Keys.
STEP 5: Choose Yes to proceed with Key Export.
STEP 6: Leave the Org/ Acct Key Pair checks as shown, create and enter a Password for your Keyfile (and it's Confirmation, remembering that it has to be different from your Account Login Password). Click OK to finish.
STEP 7: Right-click the SSProtect notification icon to view your context menu: It now includes Privileged operations:
Provision with User Administration
STEP 8: Login to your Organization Administrator Account, then from the notification icon's context menu, hover over the Administer Users menu item and choose Manage when the submenu appears:
STEP 9: Create a new Organization Account by clicking New. For Username, enter the email address for the new Non-Privileged Account you are creating - if applicable, we recommend a Gmail alias related to your Test Account:
STEP 10: Keep the default Policy settings, mostly inherited from your Account's settings, and choose Save.
Quick Action Menu to Provision a New User
STEP 11: Choose OK to dismiss the Administer Users dialog, then from the notification icon's context menu, right-click and park your mouse over Administer Users. Choose the Add User Quick Action submenu when it appears:
STEP 12: In the Add User popup dialog, for Username, enter the email address for the 2nd Non-Privileged Account you're creating, then OK then acknowledge subsequent notification:
STEP 13: Tap <ESC> on your keyboard to terminate the Add User sequence.
Register the First New User
STEP 14: Check your email for a message Subject, [SSProtect] Register Account, from ssp-admin@definisec.com with the temporary Password you need to continue:
STEP 15: Refresh Login from your notification icon's context menu, then from the Profile dropdown, choose, Register Existing...:
STEP 16: Enter the New User's Username into the dialog, then copy/ paste the temporary Password. Click Register to continue:
STEP 17: Create and enter the New Pwd (and confirm in Repeat New) that you'll use for SSProtect Login, then click Change to finish:*
SSProtect will prompt you with a message indicating that you cannot use your Account until it has been Validated by a Privileged Organization User:
STEP 18: Repeat this Registration process for the 2nd Account we created, for which we used the Quick Action Menu so it's available for subsequent consideration.
* Your Server designation will be ssp.secdefini.com or similar, rather than the non-public instance noted for our team's internal use.
Validate the New User
STEP 19: Refresh Login, select your original Test Account (now the Organization Administrator), then Login with the appropriate Password.
STEP 20: Navigate back to User Administration and select the new Account from the Account List on the left, as shown below.
STEP 21: Choose Validate to enable Account use. Choose Yes when prompted to confirm the transaction.
Dismiss a Registered Account
STEP 22: In the same User Administration dialog, select the 2nd Account you created (using the Quick Action Menu). Your state should match that given by the selection below (Reg=No and Config=Invalid).
STEP 23: While the 2nd Account is still selected, choose Dismiss then Yes to acknowledge the confirmation prompt:
Enable Sign-Ups for an Organization
STEP 24: From the same User Administration display, click the Sign-Up Policy button at the top right to adjust its' configuration:
STEP 25: Check Enable then click OK to permit Sign-Up requests.
STEP 26: Dismiss User Administration then Refresh Login then proceed as noted below.
Join a New Account to an Organization
STEP 27: At the Login dialog, use the Profile dropdown to choose, Create New.... Use your Gmail alias scheme to create and enter a new Account Username for the Email Address entry, as before and when appropriate using a Gmail alias associated with your Test Account:
STEP 28: Check Org and :Recover, leave :Email unchecked, then for the Organization use the exact name of the Organization you created, above - then click Create....
STEP 29: Check your Inbox for the Code associated with your Sign-Up proceedings, then enter it as we have done in previous Walkthrough cases. Create and enter the new Account Password then use Change. Acknowledge the notification indicating that you cannot use your Account until a Privileged Organization User carries out Validation.
Validate a Join Request
STEP 30: Use the Login dialog's Profile dropdown to choose your Organization Administrator then Login.
STEP 31: Navigate to User Administration and select the Account that has most recently submitted the Join request described above, and shown below.
STEP 32: Choose Validate to enable use of the Sign-Up Test Account. Acknowledge the popup confirmation to complete the request.
Define/ Change Default Folders for Test Accounts
STEP 33: Login to your User 1 Test Account, which for us is definisec+test1u1@gmail.com.
STEP 34: If you haven't logged into the Account since Validation, you'll be prompted to configure your Default Folder:
STEP 35: Choose Yes, then create and assign a unique folder for this Account, C:\TestDataO1U1.
Let's repeat for the User 3 Test Account, which already has a configured Default Folder.
STEP 36: Refresh Login, choose your User 3 Test Account, enter the Account's Password then Login.
STEP 37: From the context menu, choose Managed Files/ Restore to display the Managed Hostlist UI pane:
STEP 38: Click Adjust... in the lower right portion of the dialog, next to your Default Folder. Acknowledge the resulting prompt with OK:
STEP 39: Browse to/ create C:\TestDataO1U3 to maintain convention. SSProtect will return you to the Login dialog.
Create a New Organization With Sign-Up
STEP 40: From the Login dialog, choose Create New... in the Profiles control to display Create Account.
STEP 41: Enter the email address for a second SSProtect Organization's Administrator., check Org and :Recover, then enter an auto-approval Organization name in the form of domain-<OrgName> then Create...:
STEP 42: When prompted to set your Default Folder, choose Yes then create and use C:\TestData2.
STEP 43: When prompted to Export Keys, choose Yes and follow the procedure as before, which returns to the Login dialog.
Rename Profiles to Align Ongoing Proceedings
STEP 44: Refresh Login and choose Advanced from the Login dialog:
STEP 45: Choose Profiles to edit your existing Profiles:
STEP 46: Using the list, below, choose the first Account in the Profile dropdown, then Edit... and for New Name enter the list's Profile name. Save and repeat for each Account in this list:
- Organization 1 Administrator -> definisec+test1@gmail.com -> Profile=Org1_Admin
- Organization 1 User 1 -> definisec+test1u1@gmail.com -> Profile=Org1_User1
- Organization 1 User 3 -> definisec+test1u3@gmail.com -> Profile=Org1_User3
- Organization 2 Administrator -> definisec+test2@gmail.com -> Profile=Org2_Admin
Delete The Unused Profile
Before dismissing the Profiles dialog, check to see if you still have the, "dangling" reference to an Account we attempted to Create by joining an Organization, subsequently Dismissed:
- Organization 1 User 2 -> definisec+test1u2@gmail.com
STEP 47: If present, using the Profile dropbdown, select the noted dangling Profile then choose Edit... followed by Delete. Acknowledge the confirmation prompt and choose Done to return to the Login dialog.
Next BRIEF
Continue with the next in this series, BRIEF: Sharing/ Managing Data.
This article was updated w/ v10.7.1 of the :Foundation Client