The article describes settings for user administration in both the database and the platform administration.
Snabblänkar:
Manage users in the database administration
- Add a new user (recommended approach)
- Edit users in the database administration
- Delete users
- Impersonate users
Manage users in the platform administration
- Add users to the platform
- Edit users
- Remove users from all databases as well as the platform
- Restore deleted users
- Anonymization of users
General
Users are managed in both platform administration and database administration.
In platform administration, changes to email address, username, name, and potentially password are handled.
In database administration, changes to permissions, department, responsibility roles, and more are managed.
You can add a user from both the database and the platform, but depending on the use case, we recommend different approaches.
If you are adding a single user: See Add a new user
In the database, you can add users from the platform and also edit permissions or remove users.
If you have only a live database, we recommend adding the user from the database for smoother management, rather than from the platform.
Authorization requirements
To administer users, you need two different types of permissions - one in the database, which grants you access to user administration, and one in the platform, which gives you the authority to make changes and impersonate.
Database permissions-Requirements for user management
In order to administer users in the database, you need to be a Local or Full Administrator. This will grant you access to the database administration.
Platform roles- Requirements for user management
In order to create, delete, modify, and impersonate users, you also need a platform role.
These roles can be added directly when creating a user in the database or later through platform administration. To assign platform roles, you must have a higher platform role yourself.
For each individual user in the platform, different roles can be assigned, including:
- User Provisioner: User Provisioners have access to user management and can only add users.
- User Administrator: User Administrators have access to user management and can add, delete, and impersonate other users.
- Super Administrator: Super Administrators have access to all aspects of user management as well as all other parts of platform administration.
You can read more about the platform roles here!
Manage users in the database administration
Add a new user (recommended approach)
- Go to the database administration and click on "Users". Click on + Add User.
- Fill in the email address. If the user already exists in the platform, it will appear when you start typing the email address. Select the entry that appears in this case.
- Fill in the remaining information about the user and save.
- The new user will be automatically synced to the platform when it is saved.
Edit users in the database administration
Note: Changes to certain user details such as email, username, and password are made in the platform. You can read more about it here.
To edit a user in the database:
- Go to the administration () and select Users.
2 & 3) Find the user and click on the user's row.
Make desired changes in the view on the right, such as the user's permissions, and then save at the bottom right.
Delete users
If you wish to delete a user, you can do so under Users in the administration. Click on the user in question, and then click "Delete". This will remove the user from the current database.
If the user exists only in one database, it will automatically be removed from the platform as well. However, if the user exists in multiple databases, it will remain in the platform and other databases after deletion and will need to be removed from each respective database and finally from the platform.
Impersonate users
As an administrator, you have the ability to impersonate a user. This means you can log in as another user, providing you with a practical way to see Stratsys from their perspective.
Impersonation is particularly useful for troubleshooting issues related to a user's responsibilities or any other user-specific problems.
Note:It is not possible to impersonate someone who has higher privileges than yourself in the database. As a User Administrator, you also cannot impersonate users with the same or higher role. Impersonation is limited to users with lower privileges than your own.
To impersonate a user, find the user in the user administration and click "Impersonate."
To end an impersonation, click on the impersonation icon at the top right and select "End Impersonation.
Note: This must be done after each impersonation as the system will otherwise remember it for the next time you log in.
Manage users in the platform administration
In the platform administration, you handle certain aspects of your users. As a "Super Administrator," you can access the platform administration through the three gears in the left menu.
Add users to the platform
Note: If you are using AD Sync, user loading is done according to this integration, and the user you wish to add may already be uploaded in the platform. Of course, you can still add users even if AD Sync is enabled. You can read more about AD Sync and other integrations here.
- Go to the Users tab and then select Create User.
- Fill in the user's details and specify a platform role if the user is intended to administer parts of your platform. If you're unsure which platform role the user should have, you can read more about it in this article.
- Finally, you will see a summary of the information entered, and you can save the user to the platform. It's important to note that the user is not added to the database. The reason for this is that there may be multiple live databases, and the user may not need access to all of them. Therefore, you need to manually select the user according to Add User. Our recommended approach is to add the user directly in the database, which avoids this extra step.
Edit users
If you click on a user, their profile will appear as shown in the image below. Here you can do the following:
1. Password Reset - you can either create a new password for the user or generate a new one, but it is recommended that the user resets their password themselves from the login dialog.
2. Delete the user. Read more about the consequences here.
3. Tasks- Update the user's username, name, and email. Remember to never reuse an existing user for a new user for security reasons!
4. Platform role - Choose whether the user should have the ability to administer users in the platform or have access to all settings in the platform (super administrator).
Remove users from all databases as well as the platform
If a user is removed from the platform administration, they will also be removed from all databases where they are selected. You can remove the user under the Users tab.
The history of deleted users (tracking, comments, reporting, etc.) will still be preserved and visible to other users in the database. However, the name of the deleted user will be displayed as follows to indicate that the user is no longer active
Restore deleted users
Users who have been deleted can be restored in the platform if they have not been anonymized.
1. Go to the platform administration and click on the Deleted Users tab.
2. Search for the deleted user.
3. Click on the three-dot menu on the right side of the user and select Restore User. The user will then be restored in the platform as well as in the databases where they were selected before the deletion.
Anonymization of users
Under Deleted Users, there is an option to anonymize users. You can anonymize individual users:
There are also settings to set up rules for automatically anonymizing deleted users. You can enable automatic anonymization and specify the number of days after the user has been deleted that they should be anonymized.
There is also an option to anonymize all currently deleted users.
