Inside the CML environment CDV does not authenticate users itself but relies on CML passing on the result of the authentication. This is only slightly more than the username. When an authenticated request is received a "remote" user is created in CDV for the user authenticated by CML. This user shows up in the CDV users list, but unlike the users you create explicitly, its password is not editable, as you have noticed. There is no user list synchronization between CML and CDV. The users are added to CDV on their first visit. Starting with CDV 7.1.4, CML-autheticated users are assigned to one of the "vizcml-rw" or "vizcml-ro" groups. CML admins and CML project collaborators are assigned to the first group and will get admin capabilities, while other users are added to the second group and are assigned the visual consumer role. If more fine-grained permissions are needed, one can create additional groups from the available remote users.
... View more
