Allow Users to Modify Specific Properties of Their Accounts

By default, all users have the permission to modify some properties of their own accounts. The permission is granted by the built-in Security Role User Self-Service. The role enables users to modify only the properties that belong to the Personal Information and Web Information property sets. The property sets are defined by Active Directory.

Property LDAP Name
Assistant assistant
Notes info
Picture thumbnailPhoto
Personal Title personalTitle
Street Address streetAddress
Home Address homePostalAddress
Country c
Country Code countryCode
Country Name co
City l
Office physicalDeliveryOfficeName
P.O.Box postOfficeBox
Home Address postalAddress
Zip/Postal Code postalCode
Registered Address registeredAddress
State/Province st
Street street
Preferred Delivery Method preferredDeliveryMethod
Telephone Number telephoneNumber
Telephone Number (Other) otherTelephone
Mobile Phone mobile
Mobile Phone (Other) otherMobile
Home Phone homePhone
Home Phone (Other) otherHomePhone
Fax facsimileTelephoneNumber
Fax (Other) otherFacsimileTelephoneNumber
IP Phone ipPhone
IP phone (Other) otherIpPhone
Pager pager
Pager (Other) otherPager
International ISDN Number internationalISDNNumber
Primary Telex Number primaryTelexNumber
Telex Number telexNumber
MSMQ Digests mSMQDigests
MSMQ Sign Certificates mSMQSignCertificates
Primary ISDN Number primaryInternationalISDNNumber
Teletex Terminal Identifier teletexTerminalIdentifier
User Certificate userCertificate
User-Cert userCert
User Shared Folder userSharedFolder
User Shared Folder (Other) userSharedFolderOther
User SMIME Certificate userSMIMECertificate
X121 Address x121Address
Property LDAP Name
Web Page wWWHomePage
Web Page (Other) url

In this tutorial, you will learn how to grant users the rights to modify specific properties of their own accounts, and how to configure Adaxes Web Interface to enable users to edit the properties.

Grant Permissions

To allow users to modify properties of their own accounts, you need to add corresponding permissions to the built-in Security Role User Self-Service.

Any changes made to built-in Security Roles can be discarded. To do it, right-click a Security Role and click Restore to Initial State in the context menu.

  1. Launch Adaxes Administration Console.
    Expand Adaxes service \ Configuration \ Security Roles \ Builtin and select the User Self-Service role.

  2. In the Permissions section located to the right, click Add.

  3. To add the permission to modify a property:

    • Select User in the list of object types on the left.

    • In the Property-specific permissions list, check the desired property in the Allow column.

      If the property you need is not available in the list, check the Show all properties checkbox.

  4. Click OK and then click Save changes.

Permissions granted by Security Roles are effective only within Adaxes.

Customize Web Interface

To enable users to modify a specific property of their accounts in the Web Interface, you need to add a corresponding field on the form used to edit own user accounts.

  1. Open Adaxes Web Interface Configurator.

    • On a computer, where Web Interface Configurator is installed, open the Start menu.
    • On the Start menu, select Adaxes Web Interface Configurator.

    The permissions to configure the Web Interface are delegated via Security Roles. By default, only Service Administrators have the appropriate rights. To enable other users to configure the Web Interface, grant them the corresponding permissions.

    • In Adaxes Administration Console, right-click your Adaxes service, point to New and click Security Role.
    • Enter a name for the new Security Role and click Next.
    • On the Permissions page, click the arrow inside the Add button and select Configure Web Interface.

    • Click Next and follow the steps in the wizard.

  2. In the top left corner, select Self Service.

  3. In the left navigation menu, click Management.

  4. In the Forms and Views section, select My Account in the drop-down list.

    If the list doesn't contain the My Account item, click Manage object types inside the drop-down, then click Add and select My Account.

  5. Activate the Modify tab to customize the form used for editing user accounts.

  6. Select the section to which you want to add a new field and click the Add button located under the Fields list.

  7. Select the property you want to add to the form, click OK, and then save the changes.

For more details on how to customize forms and views in Web Interface, see
Customize Forms for User Creation and Editing.
Open tutorial filtering
Close tutorial filtering

Delegating Permissions

Automation

Simplifying Data Entry

Active Directory Management

Web Interface Customization

Self-Service

Back to top
Got questions?
Support Questions & Answers