Skip to main content

Users

As previously described, in CMDBuild the security management is based on the users' groups management (roles). Diverse permissions are associated to these groups on several item types and granular until the restriction on single rows and columns of a class.
In case of multiple companies' use, or use among Departments or independent seats within a company, it is possible to configure CMDBuild in Multitenant mode, allowing each Tenant to work on an isolated CMDB subdivision.
CMDBuild allows you to manage single users that access the system associating them to one or more groups and one or more tenants.
Each user can access with the sum of permissions of groups and belonging tenants, or by selecting the desired group and tenant.

Properties

This feature allows you to create and edit system accounts.

There is the possibility of performing the following operations:

  • Add a new user
  • Do searches on the configured users
  • Display only active users
  • Edit the selected user
  • Display the complete information related to the selected user
  • Clone the selected user
  • Disable the selected user (set the status as non-active)

For each user you are required to compile various information divided into the three following sections.

General properties

The following information is required:

  • Username: login username
  • Description: information used in the application header to recall the current user's name
  • Email: user's email address, used to file notifications
  • Language: default language to access the application
  • Starting page: opening page when the current user access the application
  • Service: it shows that it is a technical user used only by an automatic service
  • Active: the user is active and can be used

Password

The following information is required:

  • Password: Password to access the system (the inserted string is hidden when typing for security and privacy purposes)
  • Confirm password: Confirmation of password

Belonging groups

The following information is required:

  • Default group: if compiled it is the group used for the login in case the multigroup option has not been chosen. In case the multigroup option is active, it is the group whose settings are used in the expected cases (process start, etc.)
  • Multigroup: the user accesses the application with the sum of permissions of all groups he/she belongs to (see next point), even in case the user is not asked for an access group when logging-in
  • List of groups: groups belonging to the user can be selected. When logging-in they are suggested in case neither the default group nor the multitenant option are set

Belonging tenant

The following information is required:

  • Default tenant: if compiled, it is the tenant used for the login in case the multitenant option has not been chosen
  • Multitenant: the user accesses the application with the visibility rules of all tenants he/she belongs to (see next point). Also in this case when logging-in the access tenant is not required
  • List of tenants: tenants belonging to the user can be selected. When logging-in they are suggested in case neither the default tenants nor the multitenant option are set