Acceptable Usage Policy (AUP) management
Starting with version 1.2.0, IAM supports defining an Acceptable Usage Policy Document (AUP) for a managed organization. The AUP is presented to applicants at registration time or periodically.
Managing the AUP
The AUP can be managed from the “AUP” section in the IAM dashboard, or via the AUP management API.
Administrator privileges are required.
Creating the AUP
By default, the AUP is not defined for an organization, i.e. it must be explicitly defined by an IAM administrator.
The AUP can be created by clicking on the “Create AUP” button in the AUP management page (that can be reached clicking the “AUP” link in the organization Management navigation bar):
A dialog is shown:
where the administrator can enter the AUP URL and define how frequently the AUP should be accepted by users.
If the AUP signature validity is set to 0, a signature on the AUP will be requested only once (either at registration time or at the first IAM login after the AUP creation). A zero value means basically that the AUP signature does not expire.
A positive value in the AUP signature validity means, on the other hand, that the signature will expire after that number of days. As an example, an administrator that wants the AUP to signed each year by users should put 365 in the “AUP signature validity” field.
Editing and deleting the AUP
The AUP can be edited and deleted from the AUP management page:
Since version 1.6.0, the AUP has been converted from text to a URL. If you have just upgraded to 1.6.0 and you have already defined a text AUP, you should see the following red message below your AUP:
By clicking on “Edit AUP”, admins are prompted to insert a valid URL.
As shown in the picture above, editing the AUP will not trigger an AUP signature request.
Request a signature from users
If you want to request a signature from users for the updated AUP, use the “Request AUP signature” button in the AUP management page.
A dialog is shown:
Confirm by clicking on “Request AUP signature” and the acceptance of the AUP will be requested from ALL users at their next login.
Signing the AUP
Once defined the AUP text is shown to users for acceptance either at registration time:
or at the first login after the AUP creation:
Request AUP signature
Administrator can request user to sign AUP.
Administrator privileges are required.
Log into the service using admin credentials and click on the Users link on the left navigation bar:
From the Users link, select Any user you want to request AUP signature, for example Test-200 User:
To request AUP signature click on Request AUP signature button on User details section on the left of the page:
To confirm your choice click on Request AUP signature button on the modal window:
On success you will get a confirmation message:
After this operation, if the user logs in, they must sign the AUP again before accessing the service.
Sign AUP on behalf of the user
Administrator can sign AUP on behalf of the user.
Log into the service using admin credentials and click on the Users link on the left navigation bar:
From the Users link, select Any user you want to sign AUP on behalf, for example Test-200 User:
To sign AUP on behalf of the user click on Sign AUP on behalf of this user button on User details section on the left of the page:
To confirm your choice click on Sign AUP button on the modal window:
On success you will get a confirmation message:
