User Management

In the case of an external provisioning mode, the user list is synchronized with your provider and the add, edit, and delete functions are not available.

Summary

  • A user account must be associated with a unique email (not already referenced)

  • Each user can be a member of one or more groups

  • The user inherits all the roles of the groups they belong to

  • It is possible to manage a user’s API keys (access tokens) as an Organization Administrator

  • A user account can be deactivated: in this case, the user will no longer be able to log in to the Platform and will lose access to all modules

User management is reserved for users who have the Organisation Administrator role.
This role is assigned to at least one user during the initial deployment.
Subsequently, this user can grant it to other users or groups from the details page of a user account or group.

Creating a User Account

Creation is available from the user list.

Different parameters must be filled in when creating:

  • Login: required

  • Last name: required

  • First name: required

  • Email: required and unique

  • Language: French, English, or browser language

  • Account status: Active or inactive

User Groups

The user can belong to one or more groups.

The user’s groups determine:

  • their access to modules, depending on the roles assigned to the groups

  • their access to certain Platform elements such as DC Core Projects or DC Maestro Schedules

  • their access to certain fine-grained resources such as items published in the Marketplace

  • their ability to perform actions on elements (rights or elementary roles assigned to the group)

  • their ability to access certain types of elements in DC Core (DataBlocks, Business Entity, Charts, etc.)

Module Access

Access to modules depends on the module roles granted to the user, either directly or inherited from one or more of their groups.

Roles are cumulative: if a user is assigned the direct role "Module Administrator" and is part of the group "Module A Member" (inherited role), then both roles and their resulting permissions are granted.