Home
Administrator Guide
This guide describes how to install the HCL OneTest™ Server software.
Configuration of the server software
You can find information about the tasks that you must perform after you installed the server software to configure HCL OneTest™ Server.
User administration
After you install HCL OneTest™ Server, you must consider how the software manages users and authentication.
Configuration of multi-factor authentication in Keycloak
As a Server Administrator, you can configure multi-factor authentication that is provided by Keycloak so that the authenticity of the users is validated when they sign in or log into HCL OneTest™ Server.

Administrator Guide
This guide describes how to install the HCL OneTest™ Server software.
- Installation of the server software
  To get started working with HCL OneTest™ Server, you must first install the server software.
- Server software upgrade methods
  When you want to use the enhanced functionalities of HCL OneTest™ Server, you must upgrade HCL OneTest Server to the latest version.
- Migration of user data
  You can find information about the migration limitations and methods when you want to migrate data such as projects, test resources, configuration details of integrated applications, and so on. You can migrate data that is generated in an earlier version of HCL OneTest™ Server after you upgrade to or install the latest version, and then use that data in the latest version.
- Backup and restoration of the server data
  You must back up all your server data before you uninstall the current version of the server software or upgrade to the latest version of the server software. You must back up the server data to avoid data loss or inaccessibility of data.
- Uninstallation of the server software
  When you no longer require HCL OneTest™ Server, you can uninstall the server software. You can uninstall the server software depending on the platform on which you installed the server software.
- Configuration of the server software
  You can find information about the tasks that you must perform after you installed the server software to configure HCL OneTest™ Server.
  - User administration
    After you install HCL OneTest™ Server, you must consider how the software manages users and authentication.
    - Enabling the Sign up link on the Login page of server
      You can enable the Sign up link when it is not visible on the Login page of HCL OneTest™ Server by using the Keycloak UI.
    - Default user administration
      You installed HCL OneTest™ Server and you want to know about how the software manages user access.
    - LDAP user administration
      After you installed HCL OneTest™ Server, you can use a Lightweight Directory Access Protocol and Active Directory HTTP server to manage users and authentication. Some of the following best practices, can help you to use an LDAP/AD server to manage user access to HCL OneTest Server.
    - Managing account settings
      You might want to change your password or other settings for your account.
    - Configuration of multi-factor authentication in Keycloak
      As a Server Administrator, you can configure multi-factor authentication that is provided by Keycloak so that the authenticity of the users is validated when they sign in or log into HCL OneTest™ Server.
      - Setting up a one-time password policy as MFA in Keycloak
        As a Server Administrator, you can set up a one-time password (OTP) authentication policy in Keycloak as part of the multi-factor authentication (MFA) to validate the authenticity of the users when they sign in or log into HCL OneTest™ Server.
      - Enabling the one-time password policy as the default MFA action in Keycloak
        After a Server Administrator sets up a one-time password (OTP) authentication policy in Keycloak, the Server Administrator must enable the policy so that Keycloak can deploy the OTP policy as the default multi-factor authentication (MFA) action.
      - Resetting the one-time password policy for a user in Keycloak
        If multi-factor authentication is enabled for HCL OneTest™ Server, and a user is not able to log in because the mobile device that generates an OTP is lost, the user must request the Server Administrator to reset their credentials. The Server Administrator must reset the credentials of the user so that the user can register the mobile device again.
  - Managing third-party licenses
    When you want to manage your acceptance of any third-party license agreements, you can change them from your Account Settings page on HCL OneTest™ Server.
  - Certificate authority: Importing and extending lists
    When you want browsers and other applications to access HCL OneTest™ Server, you must enable browsers to trust the certificate authority (CA) of HCL OneTest Server. For some applications that integrate with HCL OneTest Server, you must also extend the CA lists that are trusted by the applications.
  - Copying third-party application Jars to Kubernetes
    You can run API Suites in a project on HCL OneTest™ Server. If the API Suite uses a transport and the transport requires third-party application Jar files for a successful run, you must ensure that the third-party application Jar files are available at the test run time. To achieve this, you must copy the third-party application Jar files to the computer where HCL OneTest Server is installed on Kubernetes.
  - Changing the password seed
    As an administrator, you can change the password seed that is used when you install the server software to provide enhanced security to HCL OneTest™ Server.
  - Server extensions
    You can run specific tests in HCL OneTest™ Server by enabling the server extensions.
- Team space administration
  You can find information about team spaces including the initial team space on HCL OneTest™ Server along with the tasks that you can perform to administer a team space.

Configuration of multi-factor authentication in Keycloak

As a Server Administrator, you can configure multi-factor authentication that is provided by Keycloak so that the authenticity of the users is validated when they sign in or log into HCL OneTest™ Server.

HCL OneTest™ Server uses Keycloak for user administration and user authentication is one of its features.

Keycloak mandates users create their login credentials at the time of signing up with HCL OneTest™ Server. To enhance the security of HCL OneTest™ Server and to prevent unauthorized users from logging in when user credentials are compromised, the Server Administrator can use the multi-factor authentication that is provided by Keycloak.

Multi-factor authentication

The multi-factor authentication (MFA) feature that is provided by Keycloak includes the following methods to authenticate the users when they sign in or log into HCL OneTest™ Server:

Use of a password that is created by the user when the user creates an account in HCL OneTest™ Server is the default layer of authentication.
A one-time password (OTP) that is generated by any of the OTP generators that the users install on their mobile device and register their mobile device with Keycloak. The OTP method is an optional layer of authentication that needs to be configured and enabled in Keycloak by the Server Administrator.

As a Server Administrator, you can configure the OTP policy as a MFA method in Keycloak. See Setting up a one-time password policy as MFA in Keycloak.

After you set up the OTP policy in Keycloak, you must enable or activate the OTP policy so that the MFA UI is displayed for users at the time of logging into HCL OneTest™ Server. See Enabling the one-time password policy as the default MFA action in Keycloak.

At times, if users report that their credentials are compromised or have lost their mobile device, the Server Administrator can reset the OTP credential of the user that is saved in Keycloak. Resetting the OTP credential enables the users to register their mobile devices again to use the OTP authentication. See Resetting the one-time password policy for a user in Keycloak.