6.16. User creation wizard#
For quick user account creation, functional administrators can use the user creation wizard. For information about the wizard, see User creation wizard in Univention Nubus - Nubus Manual [6]. This page is about the configuration of the user creation wizard. It addresses operators, because the configuration requires changes to the Helm Chart values.
6.16.1. Require primary email address in user creation wizard#
The User creation wizard can require functional administrators to provide a primary email address for a user account. To activate this requirement, apply the following steps to your Nubus for Kubernetes installation:
Add the Helm Chart variable in Listing 6.52 to your
custom_values.yamlfile and assign the valuetrue.global: configUcr: directory: manager: web: modules: users: user: properties: mailPrimaryAddress: required: true
To activate your changes, update your Nubus installation through helm by following the steps in Apply configuration.
To apply the changes, you need to restart the UMC Server pod as described in Restart UMC Server pod.
6.16.2. Deactivate user creation wizard#
To deactivate the user creation wizard in the Users management module in Nubus for Kubernetes, use the following steps:
Add the Helm Chart variable in Listing 6.53 to your
custom_values.yamlvalues file and assign the valuetrue.global: configUcr: directory: manager: web: modules: users: user: wizard: disabled: true
To activate your changes, update your Nubus installation through helm by following the steps in Apply configuration.
To apply the changes, you need to restart the UMC Server pod as described in Restart UMC Server pod.
6.16.3. Control account properties for user setup#
The user creation wizard provides the following additional properties to control user account setup.
- Invite user via e-mail. Password will be set by the user
If you activate this checkbox, the wizard replaces the password input fields with an input field to provide an email address. Upon user creation, the Management UI sends an invitation email containing a link where the user can set their password.
The wizard also locks the properties User has to change password on next login and Override password check. The link in the invitation email always directs the user to the User Self Service and forces them to define a password that meets the defined password quality rules.
- Property key:
invite
- User has to change password on next login
If you activate this checkbox, the user must change their password on the next sign-in.
- Property key:
pwdChangeNextLogin
- Override password check
If you activate this checkbox, the Directory Manager doesn’t run the password quality check or validate the minimum password length.
- Property key:
overridePWLength
- Account disabled
If you activate this checkbox, the Directory Manager creates the user account in a deactivated state that prevents the user from signing in.
You can use this property to prepare a user account in advance and activate it later.
- Property key:
disabled
To configure whether the wizard shows these properties, and define the properties’ default values, use the following steps:
Add the Helm Chart variables in Listing 6.54 to your
custom_values.yamlfile. Limit the configuration to those properties that you actually need.Each property has the following attributes:
visibleSet the attribute to
trueto show the checkbox for the property. The Management UI hides the checkbox if you don’t configure the attribute. Possible values aretrueandfalse.defaultSets the default value for the property. Defaults to
false. Possible values aretrueandfalse.
configUcr: directory: manager: web: modules: users: user: wizard: property: invite: visible: true default: false overridePWLength: visible: true default: false pwdChangeNextLogin: visible: true default: false disabled: visible: true default: false
To activate your changes, update your Nubus installation through helm by following the steps in Apply configuration.
To apply the changes, restart the UMC Server pod as described in Restart UMC Server pod.