User Management and Authentication

Operating System Users

The operating system users can be created, managed and deleted using:

  • the locale user configuration
  • LDAP
  • Microsoft Windows Active Directory (MS Windows only).

User Types

The different user types can be categorized into four groups:

  • Users with access to the host system
  • Users with access to the used databases

Users with access to the host system

At least one user account with administrative rights for the installation of system services must exist to install/uninstall the different services. The services require the anonymous system account, which is available in the standard configuration of Microsoft Windows 2008 Server (see the Product Availability Matrix for which version to use).

Users with access to the used databases

After the installation, default accounts exist for access to the required database components. It is recommended to change the predefined passwords of the used DBMS during the installation or immediately afterwards.

No specific OS standard users are created for the POS Client during the installation. The security guides of the respective operating system vendors apply.

User Management

Omnichannel Point-of-Sale applications use their own user management which is independent of the host's operating system and application server.

The users are imported using the corresponding interfaces.

Authentication

The authentication for users on the portal or on the POS Client is carried out by user name/password authentication.

There are special security mechanisms for passwords:

  • Passwords can expire after a defined period of time (configurable)
  • A warning is displayed before password expiration (configurable)
  • Access can be blocked if an incorrect password is entered several times (configurable)

Rights

The Omnichannel Point-of-Sale applications use the roles provided by Storemanager. The authorization concept integrated in Storemanager is based on an assignment of rights to users carried out according to roles. Single roles can be maintained by the user management integrated in Storemanager. The user import interface is used to assign the roles to users.