Overview
The Access Control page is available under the Account Management page. This page allows you to centrally manage and monitor the users that have administrative access to the CybeReady portal. You can:
- Learn who has access to the CybeReady platform
- Assign permissions using roles
- Manage users: Add users, Edit users, Delete users, and manage CybeReady dashboard passwords.
Users and Roles table
There are four data columns for each user: Name, Email, Role, and Status.
Name
This is the name used throughout the system, for email notifications and is also the display name when the user logs into the portal.
This is a unique identifier. No two users in the system can have the same email address.
Role
A user can have one of five existing roles – Basic, Operator, Viewer, Admin, and Super Admin. The role can be modified at any time by a user with Super Admin privileges. It is possible to assign the same role to multiple users.
Status
The login status of the user:
- Invitation Sent – the user received an invitation to log into the dashboard but has not completed the login process.
- Invitation expired – the user login invitation expired. Invitations expire after 72 hours. To log into the system, a user with Super Admin privileges must send the user a new invitation (described below).
- Active – the user has successfully logged into the system.
- SSO active - the user has successfully logged into the system using SSO.
- SSO created – SSO has been set up successfully for the user but they have not logged into the system yet.
- Blank status – the user has been assigned the Basic role and has no login permissions.
Available Roles
- Basic
- Viewer
- Operator
- Admin
- Super Admin
Basic
This role is intended for users who need to receive reports but should not have access to the dashboard.
Viewer
This role should be assigned to users who require visibility into the system but should not have any editing or activation permissions. For phishing campaigns for example, they can review the simulation but cannot change the selection or activate/deactivate/pause/resume the learning cycles.
Operator
This role should be assigned to users who assist with setting up the system. They do not have access to the reporting pages. These users are granted limited write permissions required to set up directory integration and sending domains (Bring Your Own Domain).
Admin
This role provides the user with full system permissions apart from Access Control management permissions.
Super Admin
This role is identical to the admin role but also provides Access Control Management permissions. A Super Admin can assign a Super Admin role to another user.
Adding a user
The Add User button is available on the Access Control page at the top right corner.
1. To add a user, click on the ADD USER button. A dialog will open:
2. Enter the user details. The following fields are mandatory: Email, First Name, Last name, Local Language, and role. A mobile phone number is mandatory in case SSO is not configured.
3. Select which notification should be delivered to the user.
- Receive Phishing Progress reports: this includes the weekly and monthly summary emails.
- Receive Periodic Business Report: This notification informs the user that the Periodic Business Report is available for download from the dashboard. This report cannot be selected for users with a Basic
- Receive suggested learning cycle notifications: This notification informs the user that the next suggested learning cycle is available in the dashboard. This report cannot be selected for users with a Basic
Editing a User
1. To edit a user, click on the three-dot icon. A menu will open.
2. Click on Edit User. A dialog window will open:
All fields are editable apart from the email address, which is the unique identifier. To modify the email address, you must delete the user and add them again with a different email address.
Deleting a User
1. To delete a user, click on the three-dot icon. A menu will open.
2. Click on Delete. A confirmation message will open:
3. Click Continue to delete the user or Cancel to abort the operation.
Resend Invite
If the user status is invitation sent or invitation expired, you may want to re-send the user an invitation to access the dashboard. To resend an invitation, click on the three-dot icon, and then click on Resend Invite.
Reset password
If the user status is Active and resetting the password is required, click on the three-dot icon, and then click on Reset Password.
Comments
0 comments
Please sign in to leave a comment.