Privilege User for IBM DataPower Gateway

IBM DataPower Gateway, commonly called as IBM DataPower, bridges the gap between different services, applications, and protocols within an enterprise's IT infrastructure by providing secure and simplified solutions.

Enterprises utilize DataPower appliances to enhance security, improve performance, and integrate various systems and services.

Minimum Privilege User for the Gateway

The highest-privileged user has an access level of Privileged, which grants access to all system functions.

Perform the following process to create a user with the minimum required privileges to perform Qualys compliance scans.

1. Login to IBM DataPower Gateway application.
2. Create a user group by going to Objects >  Access Settings > User Group with the following details:
   1. Enter the name in the Name field.
   2. Enable Administrative state.
   3. Enter the comment in the Comment field. For example, Compliance scan user group.
   4. Add the Access profile as */*/login/ssh?Access=r in the Access policies field.
   5. Add the Command group as Configuration Management. 
   6. Click Apply.
      
3. Now, create a user account by going to Objects >  Access Settings > User Account with the following details.
   
   1. Enter the name in the Name field.
   2. Enable Administrative state.
   3. Enter the Password and Confirm Password.
   4. Enter the comment in the Comment field. For example, compliance scan user.
   5. Enter the Access level as Group defined in the Access level field.
   6. Add the User group as pc_scan.
   7. Click Apply.

Create an Authentication Record for IBM DataPower Gateway

To create an authentication record for IBM DataPower gateway:

1. Go to Authentication > New > Applications > IBM DataPower Gateway(PC).
   
2. Enter the Authentication Type as Basic, Username and Password.
3. Click Create.