Skip to content
  • There are no suggestions because the search field is empty.

Alternative methods for adding Users in RSA NetWitness Platform

Issue

Alternative methods for adding Users in RSA NetWitness
Provide alternatives to adding Users via NetWitness (NW) UI.
How can I add Users with NwConsole?
How can I add Users through the REST interface?

Resolution

NwConsole - Adding Users

Example of adding local users to a broker using a NwConsole one-liner. The -c is used to separate multiple commands run within NwConsole.

NwConsole -c login localhost:50003 admin admin_acct_password -c /users addOrMod name=exampleuser password=exampleuserpassword groups=Administrators authType=netwitness queryTimeout=20

Note: make sure you use single quotes ' if your password contains special characters.

  

REST Interface - Adding Users

The REST interface is another way that an administrator can maintain appliances. It uses HTTP protocol to transfer queries. Some administrators use this to perform user management using scripting.

Example:

curl --user '$USERNAME:$PASS' 'http://$IPADDRESS:$PORT/users?msg=addOrMod&name=$USERNAMETOCREATE&password=$USERSPASSWORD&groups=$WHICHGROUP&queryTimeout=$MIN'

 

where:

$USERNAME: Username of the account used to run REST query e.g. admin

$PASS: Password of the account used to run REST query

$IPADDRESS: your Appliance IP address

$PORT: REST port

$USERNAMETOCREATE: Username you wish to add

$USERSPASSWORD: User's password

$WHICHGROUP: which group user will be a member of e.g. Administrators

$MIN: The maximum number of minutes that a query is allowed to execute for this user.  Zero means unlimited.
 

Hint: You may not want to sent password in cleartext via REST, you can send password as a hash instead

Example:

curl --user '$USERNAME:$PASS' 'http://$IPADDRESS:$PORT/users?msg=addOrMod&name=$USERNAMETOCREATE&password=$HASH&pwdIsHashed=true&groups=$WHICHGROUP&queryTimeout=$MIN'

where:
$HASH: Is a salted SHA256 hash.

Internal Comments

UserName:shurtj
4/18/2014 2:17:23 PM - Minor Changes
Adjusted the Goal statements to increase searchability and added Fact statements.

UserName:shurtj
5/27/2014 10:38:07 PM - Minor Change toTitle
Made minor adjustment to title and one Fact statement.

Jemma Lee -- 30 Aug 2019
Adjusted the title to adhere to best practice. Updated NwConsole command with queryTimeout which works in 10.6.x and 11.x..

Product Details

RSA Product Set: NetWitness Logs & Network
RSA Product/Service Type: NW Server
RSA Version/Condition: 10.6.x, 11.x
Platform: CentOS 6, 7

Approval Reviewer Queue

RSA NetWitness Suite Approval Queue