Creating a User Account

This procedure provides instructions for creating a user account on Sites that use Globalscape Authentication.

To create a user account on Globalscape Authenticated Sites

  1. After you have completed the Site Setup wizard, you can continue directly to the New User Creation wizard. Otherwise, in the EFT administration interface, connect to EFT and click the Server tab.

  2. Do one of the following:

    (On Active Directory Sites, if an invalid domain was created, the New User option is disabled.)

    The New User Creation wizard appears.

  3. In the Username box, provide the logon name. The following characters are NOT supported:
    { } | [ ] \ < > / : ; " ' * + =

    Username length is limited to 149 characters. (If the path to the user's home folder happens to exceed the maximum number of characters allowed by the Windows operating system, the VFS home folder name will be truncated. The default path is in the Site root /Usr/%USER.LOGIN%.)

  4. (Optional) Click Details. The New User Account Details dialog box appears.

    1. Provide the user account Name, Description, Phone, Fax, E-mail, and/or Pager information. In the Custom 1, Custom 2, Custom 3, and Comments boxes, you can provide other phone numbers, office numbers, mail box number, location, and so on. The E-mail address box cannot contain more than 255 characters. You can specify multiple e-mail addresses, separated by semicolons.

    2. Click OK to return to the wizard. (The e-mail address format is validated when you click OK. If the e-mail address contains invalid characters or does not contain the @ symbol, an error message appears. Click OK to dismiss the error message, then correct the address.)

  5. In the Password and Confirm password boxes, provide the account password or click Generate to generate a complex password. If you click Generate, the password appears in the box so that you can provide it to the user. (If the passwords do not match, an error message appears when you click Next.)

  6. In the Password Type drop-down list, click one of the following:

  7. If RADIUS is enabled on the Site, the Enable RADIUS check box appears under the Generate button. The check box is set to inherit the Settings Template/Site setting by default. If the check box is selected, the Password, Confirm password, Generate, Password type, and the E-mail check box are disabled. If you do not want to enable RADIUS for this account, clear the check box. When the user is created, the account is assigned an auto-generated password based on the password complexity Rules for the assigned Settings Template. Doing so avoids the possibility of a user account with a blank password if RADIUS is disabled. (RADIUS is available in EFT Enterprise only.)

  8. (Optional) In the E-mail address box, provide the user's e-mail address. If you do not provide an e-mail address for the user, the user icon is identified as such in the tree, and the account will not be available for multi-user editing. You can specify multiple e-mail addresses, separated by semicolons. The E-mail address box cannot contain more than 255 characters. (If you provided an e-mail address in the New User Account Details dialog box in step 4 above, the address is copied to this E-mail address box.)

  9. (Optional) Select the E-mail login credentials to this user check box. The username and password are sent to the e-mail address provided. Refer to E-mailing Users' Login Credentials for details, if necessary.

    PCI DSS requires that you should communicate password procedures and policies to all users who have access. You can edit the default text of the e-mail that is sent when you create a new user (CredentialsTemplate.txt) to include your organization's password policies and procedures. This file is stored in EFT's Application Data folder (by default, C:\ProgramData\Globalscape\EFT Server Enterprise).

  10. Click Next.

  11. In the Site drop-down list, click the list to select the Site to which you want to add the user. If only one Site is defined, or if you clicked in a Site tree before clicking New User, the Site's name is displayed in the list box.

  12. Click the Settings Template list and click the Settings Template to apply to the new user. All new users are automatically members of the Default Settings Template. You can move the user to a different template later if you have not yet defined a custom Settings Template.

  13. In the Home folder box, type or click the folder icon to browse for and select a path (from the relative Site root) to the user's home folder. The default path is in the Site root /Usr/%USER.LOGIN%. You can also add the variables %USER.FULL_NAME% and %USER.EMAIL% to the path. You cannot navigate above the Site root folder. Also, no verification is performed to determine whether the path is valid.

    If you use /Usr/ as the account's home folder (and remove the default %USER.LOGIN%) and clear the Grant FULL permissions to user in this folder check box, the account will inherit the permissions of the /Usr/ folder, which are Show this folder in parent list and Show files and folder in list. The account will not have permission to upload, download, and so on. Refer to Setting VFS Folder Permissions for details of setting permissions on individual accounts.

  14. Next to Assign group membership, click Groups. The Group Membership dialog box appears.

  15. Permission Groups are used in the Virtual Folder system to assign permissions to users. Each user is assigned to the All Users group. To assign the user to one or more other Groups, double-click the Group or click the Group and use the arrows to move the Group between the Member of and Not a member of boxes, and then click OK.

  16. Click Next. The protocols page appears.

  17. Select one or more check boxes next to the protocols on which the user is allowed to connect to EFT. (At least one check box must be selected.) Icons next to the check boxes indicate inherited settings from the Settings Template and Site. Clear the check boxes next to the protocols on which the user is not allowed to connect to EFT. If the text next to the protocol is also grayed out, the protocol has not been enabled for the Site and is not available.

  18. Click Finished.

The user account appears in the tree and is selected. To create more users, repeat the procedure above starting with step 2.

Related Topics