Create Local Accounts for CMS Authentication

Product: CMS

Version: CMS 8, 8.x

Published: September 13, 2012

Last updated: 1/30/2021

Comments:
0 Comments

Description

In the event that authenication (Active Directory or LDAP) is not set up or functioning, local accounts can be created.

Requirements

Full access to the Content Management Server's site root directory, typically located in <drive>:\igxsites\<site root>.

Step-by-Step

  1. Locate and open :\igxsites\\Web.config in a text editor, such as Notepad++.
  2. Within the node, add the following code, replacing newAccountName and newAccountPassword with the desired new account's name and password:
    • <credentials passwordFormat="Clear">
    •       <user name="newAccountName" password="newAccountPassword"/> 
    • </credentials>

    Example (new code highlighted in yellow):

    Code Example
    • For additional users, add another <user> element entry between the <credentials> tags.
  3. Save Web.config.
  4. Log in to the CMS with an existing administrator account, and create a new user; the User ID should match the user name(s) that has been defined in the previous steps. Ensure that the user has been added to a Group within the CMS as well.
    • If you are unable to log in with an administrator account during this step, you can modify the users.xml file to include the local user account. More information on modifying the users.xml file can be found here.
  5. Conduct a test login with the local user account.

Additional Information

Modifying the web.config for the CMS will recycle the application pool. It is recommended to make the changes outlined in this article during a scheduled maintenance period.

To set local accounts to use SHA1 hash encryption, use the following steps:

  1. Locate and open :\igxsites\\Web.config in a text editor such as Notepad++.
  2. Locate the following line within the Web.config:
    • <credentials passwordFormat="Clear">
  3. Change the passwordFormat attribute to from Clear to SHA1. See the example below:
    • SHA1">
  4. Find a free utility or webpage to generate an SHA1-compatibale hash for the local account's password. (e.g., http://gtools.org/tool/sha1-hash-generator/)
  5. Paste the newly created SHA1 hash into the password attribute for each local account. Example:
    • Before: greatPassword"/>
    • After: 695668c0cf343360dfa07dfa474e81a1e909cfa1"/>
  6. Save Web.config.

Comments

There are no comments yet.