Creating Repository Users

The repository administrator is responsible for creating user accounts to enable users to connect to the repository and access the content that they need.

When you create the PowerDesigner repository, the user ADMIN is created by default, with all available rights on everything in the repository. This user is responsible for creating other users and groups as necessary either in the repository or through an external LDAP server (see Connecting to an LDAP Server for User Authentication) and granting permissions on the contents of the repository (see Granting Access Permissions on Repository Items).

Note: The repository has separate groups and users from the DBMS.

Select Repository > Administration > Users to open the List of Users and click the Add a Row tool.
Enter a name in the Login Name column and click the Properties button to open the property sheet of the user.

If you have enabled user authentication via LDAP, select the External (managed by LDAP) check box, and click the Check Name button to verify the login name and auto-fill the remaining fields. Otherwise, manually enter an email address, and any other appropriate properties.

The following properties are on the General tab:

Property	Description
Login Name	Specifies the name used for logging in to the repository.
External (managed by LDAP)	Specifies that authentication of the user is handled by an LDAP server (see Connecting to an LDAP Server for User Authentication). Click the Check Name button to verify the login name in the LDAP server and to auto-fill the remaining fields. Selecting this check box disables the Full name and Email fields.
Full Name	Specifies the real name of the user.
Email	Specifies the email address of the user. If you have specified an SMTP server (see Connecting to an SMTP Server for Notifications) this address will be used to send the password.
Comment	Specifies any additional information about the user.
Status	Specifies the status of the user, which can be one of: Active - the user can access the repository. Blocked - the user has violated one of the rules of the password policy (see Defining a Password Policy), and cannot access the repository until an administrator unblocks her account (see Unblocking Blocked Users). Inactive - the user is no longer active in the repository (see Deactivating Users) and may not connect. The user remains in the List of Users and can be reactivated at any time.

If you have not enabled delivery of passwords by email (see Connecting to an SMTP Server for Notifications), click the Reset Password button and then select the Show checkbox to display the password and note it for transmission to the user.
Click the Groups tab and add the user to any appropriate groups (see Adding Users and Groups to a Group).
By default, all users are added to the Public group, from which they inherit the Read permission on all the contents of the repository (see Granting Access Permissions on Repository Items).
Click the Rights tab and specify any appropriate rights for the user (see Granting Rights to Users and Groups). By default, all users are granted the Connect right, which entitles them to connect to the repository.
Click the Profiles tab and associate the user with appropriate object permissions, UI, and general preferences profiles (see Applying Profiles to Users and Groups).
Click OK to complete the creation of the user. If an SMTP server is configured, the password will be sent to the user at the recorded email address.
Users must log in with their temporary password before the delay specified in the password policy (see Defining a Password Policy). When they first log in they will be required to change the temporary password.