Black Box EncrypTight Appliance Trim Kit User Manual


 
Provisioning Appliances
106 EncrypTight User Guide
Managing Appliance Users
You can add, modify, and delete appliance users directly from ETEMS. You can update user accounts for
a single appliance or for a group of appliances. When managing users, changes take effect immediately.
There is no need to push the user data to the ETEP.
Changing appliance user names and passwords can affect EncrypTight’s ability to communicate directly
with the ETEP. See “How EncrypTight Users Work with ETEP Users” on page 67 to learn more about
the interaction between EncrypTight users and ETEP users.
Related topics:
“How EncrypTight Users Work with ETEP Users” on page 67
“Configuring the Password Enforcement Policy” on page 103
“Adding ETEP Users” on page 106
“Modifying ETEP User Credentials” on page 108
“Deleting ETEP Users” on page 108
“Viewing ETEP Users” on page 109
Adding ETEP Users
For security purposes, we recommend replacing the default users and passwords on the ETEP. To ensure
your ability to communicate with the ETEP, set up the new users prior to deleting the default account.
You can add user accounts for a single appliance or for a group of appliances.
ETEP 1.6 and later includes several enhanced security options:
Configure password expiration settings. These settings apply when strong password enforcement is
enabled on the Advanced tab of the appliance editor. When the default password policy is enforced,
the password expiration options are not visible. The default password policy values shown in Table 32
cannot be modified by the Administrator.
Use a common access card (smart card) to provide user authorization in addition to certificate-based
authentication in an EncrypTight deployment. When this feature is enabled, you are required to
associate a common name with the ETEP user. See “Using a Common Access Card” on page 294 to
learn how to enable this feature across the components of your EncrypTight system.
To add a user to the ETEP:
1 In the Appliance Manager, select the target appliances in the Appliances view.
2On the Tools menu, click Appliance User > Add User.
3 In the Add Appliance User window, enter the user name conforming to the conventions listed in
“User Name Conventions” on page 104.
4 If EncrypTight is configured to use Common Access Card Authentication, enter the common name
from the Common Access Card’s identity certificate. You will not see this field if the feature is
disabled.
5 Enter the password for the user, then reenter to confirm it. The password conventions are dependent
on the password strength policy that is in effect for the ETEP.
6 Select the role to be associated with the user. Admin is the only role that can manage ETEPs from
EncrypTight.