OpManager: How-to add a New User

Tags opmanager

** Work in Progress: Article may be updated as OpM migration proceeds **

Description 

OpManager access has 3 prerequisites: each new user needs their privileged account to be added to an OpM group in OKTA, a dedicated local account created in OpManager, and a UNLV network connection on-campus or via VPN. The steps to provision the first 2 access requirements will be listed below.
 

OKTA Provision Instructions

  1. Login to the OKTA Admin console

  2. Access the OKTA Group

    1. Open the 'Groups' tab

    2. Open the corresponding OpManager OKTA group for the user's team (i.e. 'UD - OpManager Network Engineering' for NDE users)

      1. If the group does not exist, reach out to Tammy Phan to have it created. The format is 'UD - OpManager (unit name)' with OpM access provisioned and OC edit access enabled.

  3. Add the user

    1. Click on 'Assign People'

    2. Add the user's Privileged account (firstname.lastname@unlv.edu) 

OpManager Account Creation Instructions

  1. Login to OpManager

    1. Make sure 'All Probes' is selected after login

  2. Open User Management page

    1. Navigate to Settings > General Settings > User Management

  3. Add User

    1. Click on 'Add User'

    2. Select 'Role'

      1. There are currently two roles for non-admins: Monitoring Only & Elevated Monitoring

        1. Elevated Monitoring: for NDE users specifically, contains additional read-only access to NCM and other node details

        2. Monitoring Only: for all other users and teams, also only read-only

      2. Administrator role currently only available for Operations Center members

    3. Select 'User Type'

      1. Set to 'Local Authentication'

    4. Set 'Username'

      1. Input entire UNLVMail address

    5. Set 'Email ID'

      1. Input entire UNLVMail address

    6. Set 'Password'

      1. Password does not matter as OKTA will be verifying login instead

      2. Use random password generator for this entry

    7. Click Next

  4. Specify User Scope (scope will vary depending on user role)

    1. For Elevated Monitoring users

      1. Enable Monitor (All Devices)

      2. Enable Netflow (All Devices/Groups)

      3. Enable NCM

      4. Enable OpUtils

      5. Enable DPI

    2. For Monitoring Only users

      1. Enable Monitor (All Devices)

      2. Enable Netflow (All Devices/Groups)

  5. Specify Probe

    1. Choose 'All Probes'

  6. Click 'Save'

Account Troubleshooting

** WIP: will expand later **

Print Article