TrustSource supports two means of authentication: by itself or - in the enterprise edition - through a 3rd party identity management system. This section allows you to manage the TrustSource controlled way.
The content section os split into three areas:
- User management
- User import
- User invitation
You open and close each one separate to improve focus.
To access this section you will need Account Administration privileges.
1. User Management
The user management allows you to adjust the rights of each user.
TrustSource provides a set of roles, which grant access to specific rights. Some functionality will not be visible to users not member of a particular role. Therefore we suggest to run a workshop with the EACG team to identify suitable role combinations. A detailed des description of the different roles can also be found in this article.
You may type a role and a dropdown opens to see the available roles for that user. No worries! you may not do much mistakes.
To remove a role click on the small x in front of the role name and the role is gone. Changes take immediately effect, since roles will be evaluated with each request.
To remove a user, use the red trash symbol at the right side.
The RTBF-button implements the "Right to be forgotten" demand. This replaces all log entries carrying the users name with a number. This number will not be relatable without additional information or knowledge of specific actions / situations, so that the user's PII will be gone from the logs.
2. User Import
This section allows to import users from a CSV file. If you are not using an integration with a 3rd party identity management solution, this will be the most comfortable way to add users to TrustSource. Get more hints in this article.
3. User Invitation
It is possible to invite other users from your company or external users. Especially when you are working together with an external experts like for legal judgements or compliance clearance, you may use this option.
To invite someone, enter name and mail address into the corresponding fields. Upon clicking on "invite" the user will be sent an invitation mail informing him, that you invited him to collaborate and a link to TrustSource. During his first login, he will be requested to set a password.
However, as soon as you have invited the user, he appears in the list of users and you may define his role. The default for every user will be 'developer'.
The system will let you know, if the user you tried to invite already exists in your company.
Q: What if a user already exists, but in another company?
A: Users that already exist in another company - e.g. in the conglomerate context - will not require to reset their password again. They will just receive the notification, that they have been added to the company in role, whatever you assigned them.
When they log in, they will find a company selector under their avatar in the upper left corner. Switching the company will readjust their role and scope of presentation. The user context always has one company and one role! Switching the company switches the role accordingly. This allows a user to be a manager in one and a compliance manager in another company.
Q: My Invitation got lost, but user now already exists?
A: Select the user you want to resend the invitation and press the arrow-button in front of the users mail address. A new invitation link will be generated, invalidating the old one and sent to the user.
Q: User has received an invitation link but is not allowed to access?
A: Invitation links become invalid after one week. This is to prevent identity theft. Please resend invitation.
Comments
0 comments
Article is closed for comments.