Alter User

Add or remove a user to or from a group. Rename a user. Change the comment that describes a user. Enable or disable a user account. Change a user's password, or specify whether it should expire. Permission required: create_user.

Syntax

Examples

alter user Fiona add to group Newhires;

Assigns Fiona to a group called Newhires. This gives Fiona the same minimum privileges as those defined for the group.

alter user Fiona enable;

Enables user Fiona to log in again.

alter user Fiona set password_reset_days immediate;

Requires the user Fiona to change her password at the next login.

alter user 'Autumn Smith' set type external;

Specifies that Autumn Smith is externally authenticated in a corporate authentication repository supported by the Hyperion security platform: either LDAP, Microsoft Active Directory, or Windows NT LAN Manager.

alter user ASmith rename to 'Autumn Smith';
alter user 'Autumn Smith' set type external;

First, renames native Analytic Services user Asmith to Autumn Smith, because that is the name stored in the corporate authentication repository. Second, specifies that Autumn Smith is externally authenticated in a repository supported by the Hyperion security platform: either LDAP, Microsoft Active Directory, or Windows NT LAN Manager.

alter user Fred set type external with protocol 'LDAP' identified by 'cn=Engineers, ou=Groups, dc=yahoo, dc=com@server2';

Specifies that Fred is externally authenticated with the Lightweight Directory Access Protocol. This authentication module is not the Hyperion security platform; it is a custom Analytic Services .dll, retained for backward compatibility.

Descriptions

Use alter user to change user information in the following ways:

Key Phrase Explanation
add to group Add the user to a group.
remove from group Remove the user from a group.
rename to Rename the user.
enable Reactivate the user if the user's permission to log in has been terminated.
disable Disable the user's permission to log in to Analytic Services.
set password Change the user's password.
set password_reset_days INTEGER days Specify the number of days before a password expires. This setting only has meaning if the system-level password_reset_days value (shown in the password_reset_days field of display system) is not zero or "none". The value of this setting must be between 1 and 65535. The maximum effective date for user-level password expiration is Jan 19, 2038.
set password_reset_days none Remove any user-level password expiration setting created by alter user set password_reset_days INTEGER, and revert the password reset days value back to the system-level value (shown in the password_reset_days field of display system).
set password_reset_days immediate Force the user to change password at the next login.
set password_reset_days exact Undo the 'immediate' setting above. The reason for this is as follows: If the administrator chooses 'immediate' and then attempts to revert back to allowing a set number of days, it will not work because 'immediate' takes a high priority. Using 'exact' is the only way to reverse 'immediate.'
set type external Skipping the protocol and parameters, specify that this user must log in to Analytic Services using the Hyperion security platform. In order for the user to be able to log in successfully, the AUTHENTICATIONMODULE parameter must be set to CSS in the essbase.cfg file, and the user name must match a valid user name in the external authentication repository.
set type external with protocol... Specify that the user must log in using a custom Analytic Services external-authentication method, such as LDAP, instead of the standard Analytic Services login security. Not applicable for the Hyperion security platform.
comment Create a description of the user.
reset Remove obstructions to logging in for the specified user account.
  • The user account is re-enabled if it was disabled.
  • Any requirement to change password immediately is removed.
  • If the password has expired, the expiration is cleared.
  • The count of unsuccessful user logins is reset to 0.

©2004 Hyperion Solutions Corporation. All Rights Reserved.
http://www.hyperion.com