Create a DPA user account and assign privileges
You must add a user account for each person who needs to log in to DPA. Each user is assigned a role, which determines the user's permissions.
Optionally, you can integrate DPA with your company's Active Directory (AD) or LDAP service. If you do this:
- Users can log in to DPA with their domain accounts.
- You can add AD or LDAP groups to DPA and assign privileges to each group.
Before you add users, determine who needs access to DPA and which privileges each user needs. For more information about the available options, see DPA roles and privileges.
In the DPA menu bar, click Options.
- Under Administration > Users & Contacts, click User Administration.
- On the User Administration page, click Create User.
- Enter a unique user name and a password.
Specify the user's privileges:
To assign privileges associated with predefined roles, select Administrator or Read Only on All Instances.
To assign custom privileges:
Select Custom Privileges Specified Below.
To grant access to data from all database instances, select privileges in the top row. To limit access, select privileges for each database instance.
The View Data privilege is automatically selected when you select any higher privilege.
In the example below, the user can access data from only one database instance. This user can make changes to monitoring options, run reports, and view existing alerts for the selected instance.
- Click Save.
If you configured DPA to point to your Active Directory or LDAP server, you will see an option to either create a user or a group. The group corresponds to a group in Active Directory or LDAP.