Managing users

Last modified by Aurelie Bertrand on 2025/12/19 08:51

Managing users

The Users tab lets you create, search for, edit and delete users.

Creating a user

💡 Only fields marked with an asterisk are mandatory.

To create a new user:

  1. Click New user.
    ➡ The user edit panel is displayed.
  2. Enter an LDAP Login (uid) and a Common Name (cn).
  3. Complete the following fields:
    Password

    Password used to connect to DigDash Enterprise modules.

    It must contain at least 8 characters, one upper case, one lower case, one number and one special character.
    It must not contain the Login ID or the User Name.

    The password is not mandatory. If the password is empty, the user will not be able to log in with the DigDash login system.

    Display nameThe name displayed when the user opens their dashboard or logs on to Enterprise Studio.
    Mobile phoneUsed for text messaging (e.g. sending a DigDash Enterprise login URL from a mobile phone).
    User entityAvailable only if user entity creation is enabled.
    You can then assign an entity to the user. See the Delegate user administration page for more details.
    EmailThe user's email address.
    Email passwordPassword associated with the user's email account.
    LanguageThe user's language, used to display the DigDash Enterprise interface and metadata if translated.
    User themeThe user's graphical theme.
    This takes precedence over any server theme defined.
  4. Check the User must change password on first login box if you want the user to be required to change their password on first login to one of the DigDash Enterprise pages (Dashboard Editor, Studio,...).
  5. Assign one or more User profiles.
    Multiple selection allows you to combine the settings of several profiles. To do this, click on the + button, select the profiles and then their order. The order is important: if parameters are common to several profiles, the last in the list will take precedence.
  6. Define the Accessible dashboard pages and portlets to the user: enter the identifiers of the pages/objects separated by commas.
    See the information box below to find out more about concatenating elements from the profile and those from the user.
  7. Assign one or more roles to the user by selecting them from the list of available roles. See the paragraph below Roles and authorisation groups for more details.
  8. Add authorization groups groups to the user. You can use the authorisation groups created by default (System Administrator, Indicator Designer, etc.) or create your own authorisation groups in the Authorization Groups section.
  9. Click Save.

Concatenation rule for profile and user elements

When a profile is created and assigned to a user, the following profile and user elements are concatenated (the elements are added together):

  • Accessible dashboard pages
  • Accessible dashboard objects
  • User roles
  • User authorisation groups
  • User authorisations

Other elements (user parameters, for example) are not concatenated. If one value is entered for the profile and another for the user, only the value for the user is retained.

Roles and authorisation groups

When you assign a role to the user, it is added with Read, Write and Refresh (RWX) rights by default. The Refresh function is used to synchronise the role's Flows.
You can modify these rights by unchecking the appropriate boxes. The role rights shown in brackets will then update.

💡 The user who creates a new role has, by default, all the authorisation groups on this role. RWX rights are not applied in this case.
When this user assigns the role to another user, the latter will have default RWX rights on the role.

1763136681572-169.png

It is possible to assign groups of authorisations at role level in order to define rights more precisely. For example, the user Jean could have the"Dashboard Designer" authorisation group on the Telecom role and the"End User for Self-service BI" authorisation group on the Retail role.
To do this, click on the Select authorization groups... drop-down list and then check the desired authorisation groups.
In this case, the Read, Write and Refresh rights are no longer used and the selected authorisation groups are displayed.
The rights available for the roles are those of the logged-in user. A user who does not have a permission group on a role will not be able to assign it to another user.

💡Some authorisations (ACLs) are not assignable by role and will therefore be ignored if they are included in an authorisation group applied to a role. These are listed on the page Authorisations not assignable by role page or in the Authorisations file.

1763136930537-818.png

Authorisation groups assigned at role level take precedence over authorisation groups assigned at user level. So if a user has one authorisation group at user level and another at role level, only the one defined at role level is taken into account. Consider, for example, a user with the"Data Model Designer" permission group at user level but only the "End User" permission group on the Retail role. He will not have the rights of the"Data Model Designer" permission group, only the rights of the"End User" permission group.

ℹ You can revert to Read, Write and Refresh rights for a role by unchecking all the permission groups selected for it.

Case of a user profile

If you assign a profile with authorisation groups defined for its roles, the rights are additive. For example, there is a ProfileA profile with the Data Model Designer permission group on the Telecom role.
John has the Telecom role with the "Dashboard Designer" permission group. If I assign him the ProfileA profile, he will have the "Data Model Designer" permission group in addition to the"Dashboard Designer" permission group on the Telecom role .

Searching for a user

To search for a user, you can :

  • Enter the user name (or partial name)  in the search field and click Search. Type * or leave the field empty to display all users.
  • Use the Advanced Search button to specify search criteria (Display name, etc).

The list of results is displayed. The Type assigned (Named, Simultaneous, Public, Extranet, Broadcast, OEM) can be changed.

The Allowed checkbox indicates whether or not the user is allowed in the licence. Non-allowed users will not be able to connect to DigDash Enterprise. See page Manage licenses for more details.

Editing a user

To edit a user :

  1. Click the Edit_button.png button in front of the user's name.
  2. In the Edit panel that appears, modify the desired parameters and then click Save.
    ➡ A dialog box summarising the changes you have made appears.
  3. Click OK to validate your changes.

Editing a selection of users

Select the users you want from the list, then click the Edit button below the list of usersa user edition window then opens.

Multi user edition

Here you can simultaneously edit parameters, roles, authorisations, etc.
Changes are saved automatically. An information message confirms this.

See page Bulk user editing page for more details.

Duplicating a user

Duplicate a user allows you to create a new user while retaining a set of the 'source' user's parameters: language, profile, roles, authorisation groups, etc.

To duplicate a user :

  1. Click on the 1740993423126-451.png button in front of the user's name.
  2. In the edit panel that appears, fill in the missing fields.
    ➡ A dialog box summarising the changes you have made appears.
  3. Click Yes to validate your changes.

Deleting a user

To delete one or more users, select the corresponding checkbox(es) and click the Delete button.

Applying the same action to several users

To apply the same action to several users :

  1. Select the desired users (or Select all) and then in the Other actions drop-down list, select the action to be performed:
    • Assign/Remove a authorisation, then select the authorisation to be assigned/removed to the user.
    • Assign / Remove a authorisation group, then select the authorisation group to assign/remove to the user.
    • Assign/Remove a role, then select the role to be assigned/removed to the user.
    • Assign an attribute, then select the attribute to be modified (language, email address, etc). Click OK and enter the new value.
    • Assign / Add a profile, then select the user profile to assign/remove to the user. If several profiles are assigned to the user, you can choose whether to add the profile at the beginning or at the end, as the order is important. If parameters are common to several profiles, the last in the list will take precedence.
    • Authorise/Prohibit (Licence) 
    • Change the type of licence : Click on Authorise, then select the type of licence you require.
    • Remove from licence
    • Add/Remove an authorisation group to a role: see the paragraph below for details.
  2. Click OK to confirm the action.

Adding/removing an authorisation group from a role

After selecting the users and the Add an authorisation group to a role action, the Assign authorisation groups to a role dialog box appears.
This lets you add one or more authorisation groups to one or more roles for the selected users. To do this

  1. In the Roles list on the left, select the role for which you wish to add authorisation groups.
    You can multi-select by Ctrl+clicking. In this case, only the authorisation groups shared by the selected roles will be displayed.
  2. In the Authorisation groups list on the right, tick the authorisation groups you wish to assign to the role(s ) for the selected users.
    The authorisation groups available are those of the logged-in user. A user who does not have an authorisation group for a role will not be able to assign it to another user.
    Assign_auth_groups_FR.png

ℹ If you assign authorisation groups to a role that a user does not have, that role is added to the user.

  1. Click Validate.

Proceed in a similar way to delete an authorisation group: select the role(s) and then the authorisation group(s) to be deleted.

Managing user profiles

💡 The user profile allows you to define all the rights in a generic way for groups of users, including the roles and authorisation groups available.
For example, adding a new role to the profile will apply to all users attached to this profile.

The User Profiles tab allows you to create, search for, edit and delete user profiles.
Searching for, editing and deleting user profiles is similar to searching for users. See the paragraphs above.

Users attached to the profile can be viewed by clicking on View users.

Creating a user profile

The user profile is used to define all the rights in a generic way for groups of users, in particular the roles and authorisation groups available.
For example, adding a new role to the profile will apply to all users attached to this profile.

To create a user profile:

  1. Go to the Users -> User profiles tab.
  2. Click on the New Profile button.
  3. Enter a name for the profile.
    ➡ The Edit Profile page is displayed.
  4. Edit the Display name if you wish to use a different name for display in the dashboard.
  5. You can assign an entity to the user (available only if user entity creation is enabled). You can then assign an entity to the user. See the Delegate user administration page for more details.
  6. Define the Accessible dashboard pages and objects to the profile: enter the page/object IDs separated by commas.
  7. Assign one or more roles to the profile by selecting them from the list of available roles. As with users, you can assign authorisation groups to roles. See Roles and authorisation groups for more details.
  8. Add authorisation groups to the profile. You can use one of the authorisation groups created by default (System Administrator, Indicator Designer, etc.) or create your own authorisation group in the Authorisation Groups section.
  9. Click Save.

Managing user parameters

The User settings tab allows you to create, search for, edit and delete user settings.
Searching for, editing and deleting user settings is similar to searching for users. See the paragraphs above.

Adding a user parameter

User parameters are used to add specific information about users.

To create a user parameter :

  1. Go to the Users -> User parameters tab.
  2. Click the New parameter button.
  3. Enter the name of the parameter in the User parameter field.
  4. Enter a default value.
  5. Enter a description for the parameter.
  6. Check the Protected user parameter box to make the parameter non-modifiable.
  7. Click Save.
    ➡ The parameter is now available in the user edition.

Example of use

We want to create a dashboard for sales reps but only display sales for the regions for which they are responsible.

  • We create a Region user parameter.
  • In the user edition, we fill in the Region field with the desired value. For example, Aquitaine.
    If the user can access several elements, separate each element with a | (for example A|B|C). For example, Aquitaine|Occitanie.
    If the user can access all the elements, use the character string .
  • You can then use this parameter to filter the results of the graphs. For example, by adding a condition "Region equal to ${user.Region}".

Importing / Exporting users

The Import/Export tab lets you bulk import users using a file, or export the list of users to a file.

1763737806563-581.png

Exporting users

You can download a CSV file containing a list of all users and their attributes:

  • In the Export users section, click Download.

Importing users

You can bulk import users using an Excel or CSV file with a specific format. See the Import users tool (importtools) page for details of the file format.

Once you have completed your file, click Browse to select it and then Import.