Workflow: configure and manage NFM-P user security

Stages


1	Assess the requirements for user access to the different NFM-P functional areas and develop a strategy for implementing user security. See How do I manage NFM-P user accounts and groups? for more information.
2	Reserve a client GUI session for the admin user to ensure that the admin user can always log in; see How do I reserve an admin account login? .
3	Create scope of command roles or modify the default role to meet your operational requirements; see How do I create a scope of command role? .
4	Create scope of command profiles that contain the appropriate scope of command roles for the types of tasks to be performed; see How do I create a scope of command profile? .
5	Create spans or modify the default span to meet your operational requirements. Add managed objects to the spans; see How do I create a span of control? .
6	Create span of control profiles that contain the required spans; see How do I create a span of control profile? .
7	Create span rules, as required, to automatically assign new services to spans other than the Default Service Span; see How do I create a span rule? .
8	Manage user group security requirements, as required. Create or modify user groups and assign scope of command and span of control profiles to each group, as required; see How do I create an NFM-P user group? . Add workspaces to user groups; see How do I add or remove workspaces for a user group? .
9	Create, modify, or copy user accounts for performing the tasks that are associated with each user group; see How do I create an NFM-P user account? and How do I copy an NFM-P user account? .
10	Configure global user account parameters, as required. user-account expiry periods, password criteria, and a GUI inactivity timeout; see How do I configure global user account and password expiry? and How do I configure the GUI client inactivity timeout? . minimum username length; see How do I configure the minimum allowable user name length? . allowed number of authentication attempts; see How do I configure authentication failure actions? . suspended account actions; see How do I configure suspended account actions? . automated e-mail notification; see How do I configure automated E-mail notification? .
11	Configure global user activity logging, as required; see How do I set the NFM-P system preferences? .
12	Manage local user accounts, as required. List inactive user accounts; see How do I list inactive user accounts? . Suspend or reinstate user accounts; see How do I suspend or reinstate an NFM-P user account? . Manage passwords. As administrator, change the password of an NFM-P user account; see How do I change an NFM-P user password? . Force a specified NFM-P user to change the account password during the next login attempt; see How do I disable an NFM-P user password? . Change the account password of the current user; see How do I change the password of the current NFM-P user? . Export user tab preferences; see How do I export the local tab preferences of one or more users? . Assign user tab preferences; see How do I assign local tab preferences to users? .
13	Monitor and manage the active client sessions, as required. Broadcast a message to one or more GUI operators; see How do I send a broadcast message to GUI clients? . List and optionally close GUI client sessions; see How do I view and manage the active GUI client sessions? . List and optionally close XML API client sessions; see How do I disconnect an XML API JMS client connection or remove a durable subscription? View the NFM-P user activity logs to monitor GUI and XML API user activity; see How do I view the user activity log? and How do I view the user activity associated with an object? .
14	Configure or manage the following security functions, as required: Change the maximum number of concurrent NFM-P admin user sessions; see How do I change the maximum number of concurrent NFM-P admin operator positions? . Limit the number of client sessions that the NFM-P accepts from one or more client delegate servers; see How do I configure the number of allowed client sessions for a client delegate server? .
15	Change the default parameter setting for the Task Manager, as required; see How do I change the NFM-P Task Manager settings? .
16	Export or import all workspaces and tab preferences, as required. Export all workspaces and tab preferences; see How do I export all workspaces and local tab preferences? . Import all workspaces and tab preferences, import workspaces only, or import tabs only; see How do I import workspaces and local tab preferences? .