The SystemWeaver Administration application, called swAdmin2, is a utility used by administrators to maintain user accounts, user roles, server security settings, and licenses. This article provides an introduction to the application.
- Although any user can log in using the swAdmin2 to modify their own Name, Email, Password and obtain the Server ID, only a user with the Administrator role can maintain user accounts, roles, security and licenses.
- Microsoft .NET Desktop Runtime v 6.0 is installed.
Logging in to the Admin tool
When the swAdmin2.exe application is started, it will first display a general information page and a login form. In order to login, the user will need to enter the server name (TCP/IP address) of the SystemWeaver server, its TCP/IP port, and their username and password (or use the Login as xxx button for network authentication). Click Login and the application will open to the Users tab. If there are any problems with the login, an error message will show up in red below the Login button. As noted in the Prerequisites above, the user should be assigned the Administrator role for full functionality.
The Users tab is where SystemWeaver user accounts are managed.
The Users Toolbar
The toolbar provides the tools to edit, add, delete and batch deactivate all user accounts. You can also use the Find text box to filter and search for user accounts. To include inactive user accounts in the display, check the box provided.
The Users tab displays the following information:
- Username: A unique username. Usernames are not case-sensitive. Required.
- Network id: The user's network id that exists in your corporate Active Directory (AD). The user can then login without entering a password if they are already logged in to the corporate Active Directory. Optional.
- Name: The display name that consists of the user's first and last name. Recommended.
- E-Mail: The user's email address. Optional.
- Status: Indicates the account is active or disabled. The active options are Read/Write or Read-only (Viewer).
- Last Login: The date of the user's last login to the system. A null value indicates that the user has never logged in.
- Login status: Indicates with a checkmark if the account is currently logged in.
- Roles: The roles assigned to the user.
- Creation date: The date the account was created. This is only available for accounts created with version R38 or later.
- Last activation date: The date when the account was last changed from the "Disabled" status to an enabled status. Note: Only available for status changes made using SystemWeaver release R43 or later.
See articles under Managing Users, Groups, Roles for how to add, delete, search for and view accounts.
User roles are managed from the Roles tab. Although not required, users can be assigned a role to further define the type of access that they have. A user may have multiple roles. Most users will not have a role assigned.
On the Roles tab, the available SystemWeaver roles are listed to the left. If you select one in the list, the following information will display to the right:
- SID: The role's unique ID.
- Name: The name of the role.
- Info: Any optional information about the role that you want displayed for admin users.
- Description: This is read-only information.
- Users in role: A list of user accounts that are currently assigned to the role. A Find tool is available.
See Managing User Roles for a description of each role and how to assign and unassign roles.
The password requirements/policy and the security level of the SystemWeaver server is set on the Security tab.
There is also a Capabilities option here to remove access to a number of standard swExplorer capabilities using the Path Query Language.
To find out more about all available options, see:
Users can be imported to SystemWeaver from an existing LDAP server (Lightweight Directory Access Protocol) using the Import users tab. This is particularly useful for organizations new to SystemWeaver.
The tab displays the following:
Path: Populated with the LDAP configuration added using the Add new LDAP configuration button.
Clear: Clears the Path.
Filter: There are 3 filtering options using the Filter button:
- Name: Enter a string to filter on the name.
- Display name: Enter a string to filter on the Display name.
- Email: Enter a string to filter on the Email.
LDAP user list: Lists the LDAP users from the provided LDAP configuration.
See Importing Users From LDAP Server for more information.
The Licenses tab is used to upload all named and shared (float) license keys to the server, and also provides a tool for batch assigning user accounts to license keys.
Typically, there will be one license key per server, however, it is also possible to have multiple license keys.
- As of SystemWeaver release R38, it is possible to mix both shared and named license keys on one server.
- Each license key is handled separately. For example, if one key expires, it will only affect the accounts assigned to that license. Users assigned to other keys that are not expired will not be affected.
- Separate license keys are used for our domain solutions (e.g., Cybersecurity Management, Adaptive Autosar). These keys must be named license keys.
In the below example, there are 2 license keys uploaded to the server - the top one is a named license key, and the second key is a shared license key.
|Concurrent Read/Write users and Concurrent Read users columns do not display unless a shared (float) license key is uploaded to the server.
The following information is readily available for each uploaded license:
Total available licenses
The fixed maximum number of available licenses of types "Read/Write" and "Read". This is the maximum number of accounts that can be enabled at the same time. For example, if this number is 4 for "Read/Write", then up to 4 accounts can be activated with "Read/Write" access. There is no maximum number of deactivated accounts. This applies to both shared and named license keys. These counts also display in the Read/Write users and Read users columns.
The number of currently enabled accounts of type "Read/Write" and "Read". These are the accounts that are currently activated. These numbers cannot be greater than the Total available licenses on the license key for each type "Read/Write" and "Read". For example, there may be 4 "Read/Write" licenses available, but only 2 accounts currently activated/in use. This applies to both shared and named license keys.
The number of remaining licenses that exist and are available for use. For example, if there are 4 "Read/Write" licenses available and 3 of them are activated, then there is 1 available license remaining. This applies to both shared and named license keys.
For shared (float) model license keys, the following additional information will display:
The fixed maximum number of simultaneously available licenses of types "Read/Write" and "Read". These numbers are typically a smaller sub-set of the Total available licenses. They represent the maximum allowed number of connections of each type "Read/Write" and "Read". For example, there could be 5 Total available licenses of type "Read/write" that share 3 Concurrent licenses. Once 3 of the 5 accounts are connected, the other 2 activated accounts assigned to that license cannot log in until a license becomes available. Note that if one account has multiple connections simultaneously from different computers, each connection uses 1 of the concurrent licenses. These counts also display in the Concurrent Read/Write users and Concurrent Read users columns.
|Tip: Find out more about Read/Write and Read-only license types.
If licenses associated with different servers are uploaded, a Servers drop-down list will display to enable filtering of the list.
User accounts can be assigned individually or in a batch operation. The Licenses tab provides a tool for batch (or single) assigning accounts to a license key. See Batch Assigning via Licenses Tab for instructions.
This screen is read-only and displays a list of current connections. You can click on the column headers to modify the sort. Click Refresh to update.
A License drop-down list displays at the top right when more than one license key is used for login purposes, and enables you to filter the Logged on list by License.
To find out more about the information displayed on this tab, see Viewing User Activity and Usage Statistics.
Note: Entries with missing information for Username and Name are failed connections, e.g., due to wrong password, etc., that are hung. A server restart will clear them. In addition, Logged on will not display entries when the swAdmin2 client is logged in to a mirror server. Logged on entries can only be viewed when logged in to the main server.
In later versions of SystemWeaver, a Transactions tab will display statistics on API usage per license.
- View total transactions data
- View daily transactions data
- Filter by preset or custom time period
- Refresh data for current time period
- Export 2 years of transactions data
More details to follow in future releases.