Users and Groups

Users and Groups is the Configuration Studio model for managing users and groups. It can be found in the View menu or in the toolbar.

 

User represents an end user of the system.

Guest user is a user that is assigned Guest access. In a default installation there is no limit to the number of guest users that can be created, but the customer's license may contain a limit. Very few menu options are available to them, such as Show as graph/table choosing Benchmarking views.

Group is a grouping of users. A Group can have one or more users as members. By using Groups you can perform a task on several users in one single operation.

 

In Users and Groups you can:

How to create or change a user

Users are stored in a table in the User panel. This table contains users' first and last names, and e-mail addresses where available. Users can be sorted by any column in the table by clicking the heading of the column you want to sort by.

 

You can also search for all users with a certain text or number sequence in the ID or user name by entering the search text in the Search field, or you can filter the user table to only show members of certain groups by clicking at the top and selecting the group(s) you want.

 

To create a new user right click directly in the User panel and choose Add -> User.

 

To edit a user's information double click on the user or right click it and choose Edit. You can also use the Properties panel on the right. You can give the user a new User ID and add or change personal information such as e-mail, telephone, and address.

User properties

Login information

General

The following optional information can be registered:

Address

The following optional address information can be registered:

Last modified

Image

Audit

Advanced

Access

  • Users must be assigned either Guest, Web, or Admin access in order to access the Web pages. Users without one of these accesses will be denied access to the Web.

  • Users will need Admin access in order to change object properties on web pages. Object owners Object owners and users with Unrestricted Property access will also have rights to edit certain objects on the web.

  • To access the Configuration Studio, the user needs either Configuration Studio or Admin access. Users with Configuration Studio access can view (read) model objects, but the user's total access rights determine which objects can be modified or added.

  • To have any effect Forms, Transformer, Reporter, Workflow, Strategic Initiative and Risk accesses as well as Resources and Unrestricted property access must be combined with either Configuration Studio or Admin access.

Resource Access

model Access

If any of these models are not displayed it may be because your license needs to be updated.

How to create or change a group

To create a new group right click in Group panel and choose Add -> Group.

The Everyone group exists by default, and all users belong to it automatically. It is not possible to remove users from this group or explicitly add users to it. It is not possible to delete the Everyone group or to change its ID/name ("Everyone"). This group is commonly used to perform tasks on all users in the system in a single operation. Default access for the Everyone group is Web.

 

To edit a group's information right click it and choose Edit, or use the Properties panel on the right.  

Group properties

ID

General

Configuration

 When a user logs in with SSO, his/her group memberships will be changed based on what SSO says the memberships should be. If a user has changed group accesses in AD then this will be reflected when the user logs into BMP.

These changed memberships will only apply to groups with Origin = "SSO".

If, for example, you create a group bmp ( Origin = "Internal" or Origin = "LDAP") that does not exist in AD and give user1 membership to it, when user1 logs in, user1 will not lose membership in group bmp.

If the bmp group had Origin = "SSO", the user would lose membership in bmp because the SSO login states that user1 does not have membership in group bmp.

Note that the behavior of Origin = LDAP and INTERNAL is the same, in this respect.

 

Audit

Advanced

The properties in the Advanced tab are the same as for User.

 

Version 5.1.2.0

This document contains confidential information. Not to be copied by third parties without written authorization.

© Copyright Corporater AS - All rights reserved.