User Type | Authentication | Authorisation |
---|---|---|
local user | User logs in with username and password maintained in PhixFlow | Access is controlled by user groups assigned to the user in PhixFlow |
mixed user | User logs in with Active Directory/SAML | Access is controlled by user groups assigned to the user in PhixFlow |
external user | User logs in with Active Directory/SAML | Access is controlled by external user groups mapped to PhixFlow user groups on login |
Tip |
---|
If you use an external login system (Active Directory/SAML), you must create accounts with the same username in PhixFlow. However, you do not need to set any password. |
For more information, see:
- Configure SAML Integration
- Configure Groups for External Login
- Configure Active Directory Integration.
Users can view and change their own user account details from the
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
You can add individual users to user groups. Members of a user group have the privileges of their roles. The privileges provide members of a user group with access to PhixFlow features, modelling objects, display components, actions and applications. For information about how users, user groups, roles and privileges work together, see:
- Managing the User List
- Managing User Groups and Privileges
- Restricting a User from seeing a column in a GRID.
Info |
---|
To edit a user account, you must belong to a user group that has a role with the privilege Administer Users, User Groups and Roles. |
Adding or Changing a User Account
To create or change a user account, in the repository scroll down to the
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
To change an existing user account, double-click on the name to open its property tab.
To add a new user account, right-click
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
User Properties
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
Some users need to run analysis on models that include database export. When the datasource has the option Use User credentials on export ticked, PhixFlow automatically logs into the database using the user's:
Basic Settings
Field | Description | ||||||||||||||||||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Login Name | Required. Enter a name with which the user will log into PhixFlow. Whatever capitalisation you use, PhixFlow treats the name as all lower-case. If creating a mixed user the login name must match the name used for the external login provider. | ||||||||||||||||||||||||||||||||
First Name | Required. Enter the first name of the user. For external users, the first name is supplied by the authentication provider. | ||||||||||||||||||||||||||||||||
Last Name | Enter the last name of the user. For external users, the last name is supplied by the authentication provider. | ||||||||||||||||||||||||||||||||
Locale | Required. Select the user's country from the drop-down list.
| ||||||||||||||||||||||||||||||||
Domain | Enter the domain with which the user logs in. For PhixFlow user accounts that are not integrated with other user management systems, enter The drop-down list displays all external login domains for authentication only. These are configured in phixflow-login.xml. The domain set here also affects the user list in the repository as follows:
| ||||||||||||||||||||||||||||||||
User Type | Read-only. PhixFlow displays LOCAL, MIXED or EXTERNAL, depending on the configuration of the properties. | ||||||||||||||||||||||||||||||||
Organisation | Enter your organisation name. For external users, the organisation name is supplied by the authentication provider. | ||||||||||||||||||||||||||||||||
Password | Available for local users only. Enter the user's password. Users can change their password:
| ||||||||||||||||||||||||||||||||
Password Policy | Required. Available for local users only. Keep the default password policy, or select an alternative. PhixFlow checks that the password meets the requirements configured in the password policy. The default password policy is configured for the PhixFlow instance in System Configuration. | ||||||||||||||||||||||||||||||||
Default Dashboard | Select a dashboard that PhixFlow will display when the user logs in. | ||||||||||||||||||||||||||||||||
Default Application | Select an application that PhixFlow will load when the user logs in. Users can override the default by specifying an alternative application in the URL that they use to access PhixFlow. | ||||||||||||||||||||||||||||||||
Email Address | Enter an email address for the user. PhixFlow uses this address to send notification emails. These are configured in the Send by Email sections of: These link to User Notification Rules. For external users, the email address is supplied by the authentication provider. | ||||||||||||||||||||||||||||||||
Phone Number | Enter a phone number of the user. For external users, the phone number is supplied by the authentication provider. | ||||||||||||||||||||||||||||||||
Enabled | Available for local and mixed users only.
You can only enable a user if the Password has been set.
| ||||||||||||||||||||||||||||||||
Account Locked | Available for local users only.
| ||||||||||||||||||||||||||||||||
Password Reset Locked | Available for local users with a password policy that permits password reset.
| ||||||||||||||||||||||||||||||||
Open in Design Mode |
| ||||||||||||||||||||||||||||||||
Show the Help Tab on Startup | The Help tab provides a link to the PhixFlow help pages and Training Courses.
| ||||||||||||||||||||||||||||||||
Last Activity Time | Read only. PhixFlow displays the most recent time that the user was active in PhixFlow. |
User Groups
This section has a toolbar with standard buttons and
. Insert excerpt _user_group _user_group nopanel true
The grid contains a list of user groups to which this user belongs. To add a user group to the list:
- Click
to list all the user groups in the repository.Insert excerpt _user_group _user_group nopanel true - Drag user groups into this list. This automatically adds the user to the user group.
To remove a user from a user group, use the toolbar button
Insert excerpt | ||||||
---|---|---|---|---|---|---|
|
For external users, the list of user groups shown for the user is read-only. The user groups are the PhixFlow equivalents that map to the Active Directory user groups; see Configure Active Directory Integration for details.
Security Questions
This section is only available for local users. Enter 3 questions and answers. If a user needs to reset their password, PhixFlow asks one of the questions to verify the user's identity; see Password Reset.
Field | Description | ||
---|---|---|---|
Question 1 | To configure security questions and answers:
| ||
Answer 1 | |||
Question 2 | |||
Answer 2 | |||
Question 3 | |||
Answer 3 | |||
Last requested reset time | PhixFlow displays the date/time of the last password reset. |
Tip |
---|
You can save the user properties with none or incomplete security questions and answers. PhixFlow recommends that users set all three security questions and answers in the User Details window. |
Export Password
This section relates to exported configurations. These are applications, packages or selected objects saved as zip files. You can move exported configurations between PhixFlow instances.
To ensure data security, PhixFlow can encrypt the files. PhixFlow saves the files in the download area for a limited time period; see Configuring the Download Area.
Use the following fields to set a default password for exported configurations.
Field | Description | ||||||||||||||||
---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
Export Password Policy | By default, PhixFlow applies the Password Policy set in System Configuration → Advanced → Export Password Policy. Optionally, select a different password policy to apply different rules about the export password for this user. | ||||||||||||||||
Export Password Not Set | For user accounts with an empty Export Password, use this tick box to distinguish between passwords set as blank, or passwords not yet set.
| ||||||||||||||||
Export Password | This field is available when Export Password Not Set is not ticked. Enter a password with at least 6 characters.
When the user downloads an exported configuration, the zip file is encrypted and this password is associated with it. The user can enter a different password.
|