Change Download Preference


{{errorInSavingPref}}
Current Preference
{{dwnldPreference}}
Change Preference to:

Welcome to User Administration for CA Customers

Last Updated: September, 2017

 

Table of Contents

Introduction
Registering for User Administrator access
Registration Requests
Users and Permissions
Audit Reporting
Searching, Organizing and Exporting Data
Removing or Revoking User Administrator Access

 

 Introduction

User Administration is optional functionality that is available to CA enterprise customers. It provides the ability for customer User Administrators to manage user access to their site IDs via CA Support Online. A User Administrator takes on the responsibility of approving, updating and revoking access for users at a specified site ID.

Customers who wish to manage their own users must agree to the Terms of Use at initial registration and whenever the Terms of Use are updated. After approval of the first User Administrator for a site ID, CA systems will automatically route all subsequent access requests for that site ID to the User Administrator. As you will see later in this document, new site ID access requests will display in your Registration Requests queue within a new User Administration area in the left navigation panel of CA Support Online.

  • Key Point: CA Support does not process access requests for sites with a User Administrator.

CA encourages multiple User Administrators per site ID so that there is always a representative to make user access decisions on behalf of your company.

Key features of User Administration are:

  • Registration Requests queue to instantly see pending access related requests.

  • Email notifications of new access requests Users and Permissions area to view all users with access to your site ID. This is your workspace to change access levels, revoke user access, and revoke User Administrator access to your site(s).

  • Audit Reporting area that displays recorded User Administrator transactions.

  • Ability to export site user and audit information to Excel.

 Registering for User Administration Access

Enterprise users will now see a tab in My Account called Profile.

Figure 1

After clicking on the Profile link select the Request Additional Access option found on the CA Support tab.

Figure 2

 

Finally, select the Admin Access tab on the Request Additional Access page.

Figure 4

 

This screen is for requesting access to be a User Administrator for one or more sites where you are a member. All sites that you can currently access will be listed along with an indicator to show whether you already have active or pending User Administrator access.

Select one or more sites where you require User Administration access. Enter required supporting information in the text box. A supporting information example would be a statement that your management requires you to administer the site.

Click to submit your request.

Upon submission of your first request you will be required to review and accept the Customer User Administration Terms of Use.

  • Note: The first User Administrator at a site ID will be granted the access by CA Support. Subsequent requests for User Administrator access to the site will be granted by the site ID's User Administrator.

User Administration Menu

The User Administration menu will appear if you have User Administrator access for any site ID. The following screen shows the menu expanded.

Figure 1a

Select the Administration option to access User Administrator functions.

User Administration Screens

User Administration consists of 3 main screens - Registration Requests, Users and Permissions, and Audit Reporting.

Figure 4a

 Registration Requests

This screen contains all unprocessed registration requests for the selected site ID. Once users' requests are approved, their names will appear on the Users and Permissions screen. Those requests that are rejected will no longer be accessible, but will be recorded in the Audit Reports area.

This is your main work area in User Administration where you will find and process:

  • New users registering for CA Support Online and your site ID for the first time.

  • Users with access to other sites that are requesting additional site access to your site.

  • Other enterprise users at your site ID who are requesting User Administration access.

To process a registration request, click on the View/Edit icon for the user.

You are in the registration detail record where you can choose to accept, hold or reject the request. There is also a comments field where you can enter optional text that will be sent with the email to the requestor.

Figure 8

Figure 9

Review the request, select the desired status in the dropdown menu, optionally add comments which will be included in the no-reply email, then click Save.

Accept - This accepts the access request for your site and will trigger a no-reply email to the user with your optional comments. The request will no longer be displayed in the Registration Requests. If you accepted a site access request, the user will now display in the Users and Permissions screen. If you accepted a request to become a User Administrator, the user will be displayed in the Users and Permissions screen with a User Administrator indicator. A record of the acceptance will be entered into the audit report.

Pending - This is used when you plan to process the request, but are not ready to complete it. The request will remain in the Registration Requests screen with the Pending status. The Pending status will also be visible to any other User Administrators for your site so they will know another User Administrator is handling the request.

Reject - This rejects the users request and will send a rejection email to the requestor along with any comments you enter into the record. You will get a confirmation pop-up box to verify you want to reject the request. If you click OK, the request will drop from the Registration Requests screen and the transaction will be recorded in the audit report.
Note: The rejection is not reversible and if in error, a new request would need to be submitted

 Users and Permissions

This page lists the users who have access to your site. If you are a User Administrator for multiple sites, you will be able to view all users and sites.

Figure 10

The Users and Permissions screen is where you can view, modify access level, remove User Administrator access for another user, and revoke access to the selected site.

Click the View/Edit icon next to the user to be reviewed or modified. 

Figure 11

Update Site Access

This Update Site Access tab on the contact details page allows you to remove a user's UA access to the selected site and to change the user's access level that determines what functions the user can do on the site. The access level applies across all sites that the user can access. Lowering a user's access level requires that the User Administrator have authority over all sites that the user can access.

Access levels - There are now 6 access levels with 3 new variations of the Enterprise User. Enterprise Users can now be restricted from downloading enterprise products, solutions or both.

Please note: As stated above, a CA Support Online user can only have one role per login (email address) so if a user has multiple site access, the assigned role will apply across all sites.

  1. Enterprise - Enterprise Users can open and view cases for entitled products for all sites all sites they can access. They can download products and solutions and have access to all knowledge base documents and documentation.

  2. Enterprise - No Product Downloads - This role has the same functions as the Enterprise User except there is no ability to download enterprise products. This user can download entitled published solutions.

  3. Enterprise - No Solution Downloads - The role has the same functions as the Enterprise User except there is no ability to download entitled published solutions. Entitled products can be downloaded, but the user cannot download patches / solutions.

  4. Enterprise - No Downloads - This role has the same functions as the Enterprise User except there is no ability to download entitled enterprise products or solutions. The user has access to case management, knowledge base documents and documentation.

  5. Indirect User - Indirect Users are Enterprise users that have the ability to view cases, but cannot open them. The indirect user role is normally used for users at sites where a CA Partner is delivering support to the customer. Indirect Users have access to all entitled downloads, knowledge base documents and documentation.

  6. Read-Only User - Read-Only Users are Enterprise users, but do not have case management. They cannot open or view cases. These users cannot download entitled products, but can download patches/published solutions. Read-Only users can view all enterprise documentation and knowledge for all products.
  • Key Point: Because a user's access level applies across all sites that the user can access, the user who has multiple site access must have the highest access level that is required by any of their sites.

Lowering a user's access level can only be done by a User Administrator who has authority for all sites that the user can access. If that user requires enterprise access at a site not under the jurisdiction of the User Administrator, the access level cannot be lowered.

Raising the access level can be done by any User Administrator if required for the site. This will raise the user's level for all sites.

Revoke Site Access

A User Administrator can choose to revoke a user’s access to a site. 

Figure 12

Upon confirmation, the user will be removed from the selected site ID. 

  • Key point: Once confirmed, revoking access is not reversible. The user must re-enroll or make a new request for additional site access to the site.

If the user belongs to sites not under the authority of the User Administrator, access to those sites will not be revoked.

  • Revoking a user's site access cannot be reversed. The user would need to create a new account or, if a member of another site(s), would need to again request additional site access to the site that was revoked.

Revocation of a user will be recorded in the Audit Reporting section of all affected sites.

Parent/Child Sites

A User Administrator of a child site cannot modify the users of the parent site.

 

 Audit Reporting

Audit Reporting displays all transactions made by the User Administrator(s) at each site.

  • Key Point: Audit Reporting does not include historical data. Transaction logging starts when the first site User Administrator begins processing requests or updating/revoking site users.

Figure 13

 Searching, Organizing and Exporting Data

All User Administration screens have features allowing you to search on data for any column and to customize your view by moving and sizing the columns.

Both the Users and Permissions screen and the Audit Reporting screens have the ability to export your data to Excel.

 Removing or Revoking User Administrator Access

User Administrators can revoke the access of another User Administrator at their site. User Administrators cannot remove their own access.

Note: If User Administator Access is unintentionally removed, the user must re-register for User Administrator access.

Removing Your User Administrator Access

If you are the only User Administrator at your site and there will be a replacement, it is recommended that you first approve the replacement User Administrator, then request that person to revoke your access.

If there will not be a replacement User Administrator and you are the only UA at the site, please open a support issue either online by selecting "Support Online" as the product or by contacting CA Customer Care.