user create

This pdadmin creates an ISAM user. A user is a registered participant of the secure domain. This command requires authentication (administrator ID and password) to use.

A GSO user is an ISAM user that additionally has the authority to use single sign-on to work with web resources. The -gsouser option enables global sign-on capabilities. Users that are created in an Active Directory are automatically given the capability to own single sign-on credentials. This capability cannot be removed. We must create such users in the same AD LDS partition where the ISAM Management Domain information is stored.

When we use an LDAP user registry, this capability must be explicitly granted. After this capability is granted, it can be removed.

The -no-password-policy option allows the administrator to create the user with an initial password that is not checked by the existing global password policies. If this option is not present in the command, the password provided is checked against the global password policies. In this case, the user create command fails if the password is invalid, and the error message includes information about what conditions were not met. However, if the administrator applies the password option on the user modify command, the -no-password-policy option is not available. Therefore, the modified password is always checked against the global password policy settings.

Options

Return codes

Examples

To make the user accounts valid, use the user modify command to set the account-valid option to yes.

See also

user delete
user import
user modify

Parent topic: pdadmin commands