15.1  Viewing and definitions of user accounts

To define local user accounts, import accounts to the local database or/and configure accounts mapped from the domain, go to the User Accounts tab in the Users and Groups → Users section.

WinRoute user accounts

Figure 15.1. WinRoute user accounts


Domain

Use the Domain option to select a domain for which user accounts as well as other parameters will be defined. This item provides a list of mapped Active Directory domains (see chapter 15.4  User accounts in Active Directory — domain mapping) and the local (internal) user database.

Search

The Search engine can be used to filter out user accounts meeting specified criteria.

The searching is interactive — each symbol typed or deleted defines the string which is evaluated immediately and all accounts including the string in either Name, Full name or Description are viewed. The icon next to the entry can be clicked to clear the filtering string and display all user accounts in the selected domain (if the Search entry is blank, the icon is hidden).

The searching is helpful especially when the domain includes too many accounts which might make it difficult to look up particular items.

Hiding / showing disabled accounts

It is possible to disable accounts in WinRoute. Check the Hide disabled user accounts to show only active (enabled) accounts.

Account template

Parameters shared by the most accounts can be defined by a template. Templates simplify administration of user accounts — shared parameters are set just once, when defining the template. It is also possible to configure some accounts (such as administrator accounts) separately, without using the template.

Templates apply to specific domains (or to the local user database). Each template includes parameters of user rights, data transfer quota and rules for content rules (for detailed description of all these parameters, refer to chapter 15.2  Local user accounts).

Local user accounts

If the Local user database is selected in the Domain item, user accounts in WinRoute are listed (complete information on these accounts are stored in the WinRoute configuration database). The following options are available for accounts in the local database:

Add, Edit, Remove

Click Add, Edit or Remove to create, modify or delete local user accounts (for details, see chapter 15.2  Local user accounts). It is also possible to select more than one account by using the Ctrl and Shift keys to perform mass changes of parameters for all selected accounts.

Importing accounts from a domain

Accounts can be imported to the local database from the Windows NT domain or from Active Directory. Actually, this process includes automatic copying of domain accounts (account authenticating at the particular domain) to newly created local accounts. For detailed information about import of user accounts, refer to chapter 15.3  Local user database: external authentication and import of accounts.

Import of accounts is recommended in case of the Windows NT domain. If Active Directory domain is used, it is recommended to use the transparent cooperation with Active Directory (domain mapping — see chapter 15.4  User accounts in Active Directory — domain mapping).

Accounts mapped from the Active Directory domain

If any of the Active Directory domain is selected as Domain, user accounts in this domain are listed.

Edit User

For mapped accounts, specific WinRoute parameters can be set (refer to chapter 15.2  Local user accounts). These settings are stored in the WinRoute's configuration database. Information stored in Active Directory (username, full name, email address) and authentication method cannot be edited.

Note: It is also possible to select more than one account by using the Ctrl and Shift keys to perform mass changes of parameters for all selected accounts.

In mapped Active Directory domains, it is not allowed to create or/and remove user accounts. These actions must be performed in the Active Directory database on the relevant domain server. It is also not possible to import user accounts — such an action would take no effect in case of a mapped domain.