In Manager, you can manage user accounts and assign them to either the agsadmin or agsusers user groups for access to the GIS Server. You can view, add, remove, and edit user accounts. Users belonging to the agsusers group will only be able to view the user list, while those accounts that belong to agsadmin will be able to add, remove, and edit accounts.
ArcGIS Server handles requests and responses in a secure environment as described in the diagram below:
An embedded Sun Directory Server manages user access to the system based on a user's role. There are 2 levels of user access: user and administrative. The user and administrative accounts are created when ArcGIS Server for the Java Platform gets installed. At runtime, when a user request comes into the system, the Sun Directory Server that is embedded in the SOM will authenticate the user and determine what user group the user belongs to, agsusers or agsadmin, and maps the user to the appropriate OS-level account. The request is either accepted or denied based on the user's membership in either of these accounts.
The following diagram describes the different user levels:
Installing ArcGIS Server on Linux or Solaris requires super user privileges. This is only required at the time of installation. There will be three OS level accounts needed for ArcGIS Server to run properly.
The install user - this user account will also be running ArcSOM and ArcSOC processes.
agsadmin – This user account will run the OS processes for agsadmin group users. This user will be created at the time of install. The default password is “agsadmin”. You need to be superuser to change the password using the “passwd [username]” command.
agsuser – This user account will run the OS processes for agsuser group users. This user will be created at the time of install. The default password is “agsuser”. You need to be superuser to change the password using the “passwd [username]” command.
NOTE: For distributed setup, SOM and SOC machines are on different machines, password for agsadmin on all machines must match. The password for agsuser on all machines must also match.
ArcGIS Server users are managed and maintained by the ArcSOM. These are not OS-level accounts. You can manage these users through ArcGIS Server Manager or the command line interface. There are three types of ArcGIS Server users:
NOTE: It is strongly recommended that you change the password for admin, agsadmin, and agsuser accounts immediately after initial setup of ArcGIS Server.
Log into Manager as user "admin"
Navigate to the Users page in Manager by clicking the GIS Server tab and clicking on Users in the left-handle panel.
To add a new user account, click on Add Users. Here, you can also define the group that the account will belong to.
To remove a user, in the User list page, click on the checkbox next to the user or users you wish to remove and click "Delete".
To Edit a user account, click on the Edit button for the account you wish to edit and change the password, name, and/or user group.
Note: if you edit the password/group for the user that you are logged into Manager as, you must log out of Manager and log back in again.