Managing Users

Perform the following tasks to edit, copy, delete and perform other management tasks. You can also manage users with API functions.

  1. Ensure that you have the necessary security role. See Managing Users.

  2. Click System > Security > Users.

  3. Select a user, then the action to take. For example:

    • Delete Selected Item: Permanently delete the user.

    • Copy Selected Item: Create a new user based on the selected user's settings. See Copying Users.

    • Show all parent groups for user: See the groups in which the user is a member. Since group assignment to system security roles and user interface roles determines what a user can do, use this option to identify their access to artifacts.

  4. Click Save.

Copying Users

  1. Click System > Security > Users.

  2. Select the user, then click Copy Selected Item.

  3. In New Name, enter a user name.

  4. Select Copy References made by parent groups to add the user to the original user's groups except exclusion groups.

  5. Click OK and modify other settings as needed. See Managing Users.

  6. Click Save.

Disabling Users

Administrators can disable users, preventing them from logging in by:

  • Modifying a user's account to set Is Enabled to False. See Disabling a User Manually.

  • Specifying an inactivity threshold to deactivate all users - native and external - that try to log in after a particular amount of time elapses. This threshold applies to users in the Administrator group, but not the Administrator. Users that try to log in after the threshold expires receive an error. See Defining an Inactivity Threshold.

Disabling a User Manually

  1. Click System > Security.

  2. Expand Users and select the user to disable.

  3. From Is Enabled, select False.

  4. Click Save.

Defining an Inactivity Threshold

  1. Launch the Server Configuration Utility.

  2. Select File > Open Application Server Configuration File and browse to: OneStreamShare\Config\XSFAppServerConfig.xml.

  3. In Authentication, click Security.

    ""

  4. In Logon Inactivity Threshold, enter the number of days after which inactive users who try to log in, receive an error.

  5. Click OK then Save.

  6. In a command prompt, reset IIS.

  7. In the application, select System > Security > Users.

  8. Select a user and review their Logon Inactivity Threshold.

Enabling Users

  1. Select System > Security.

  2. Expand Users and select the user.

  3. In General, set Is Enabled to True.

  4. Click Save.

Removing Users From Groups

Because group membership determines access to artifacts and tools, be sure that you want to remove a user from a group.

  1. Select System > Security.

  2. Expand Users then click the user.

  3. In Group Membership, select the group and click Remove Selected Item .

  4. Click Save.

Managing Users With BRApi

You can perform some user and group management tasks using BRApi functions such as CopyUser, DeleteUser, and CopyGroup. The ability to use these functions is governed by your role as an Administrator and may require a Manage System Security role. See Manage System Security.

For example, if a dashboard's design includes a button that uses a BRApi function to support adding users, users that click the button are validated to ensure they are in the Administrator group or associated with the ManageSystemSecurityUsers role.