To Edit or Close a user account, Manager level access is required for the User Management Module (see Access Levels). System level access permissions are required to edit Manager accounts. See here for how to check your current access level. See here for how to apply for a change in access level.
This page describes how to make changes to another user's account as a User Manager. See here for how to make changes to your own profile.
To make any modifications, first navigate to the details page for that user.
Buttons will appear on the command bar to make the following modifications:
Edit Details - For security purposes, modifications are limited to their name, and whether they are a Temporary User.
Reset Password - Reset their password to a randomly generated string, for example if there is a suspected security breach. An email will be sent to their registered address, inviting them to login and set a new password similar to a Welcome Email when the account was created.
Close Account - Permanently close the account. The user will no longer have access to the system, although the history of their interaction with the system will be maintained.
A user's account should be closed promptly after they no longer need access to system to maintain security. This will most commonly occur if they change change jobs or roles.
If the user joins another organisation where they still need access, the account should still be closed. A new account should be created, associated with their new Organisation, to grant access again.
Closing an account is permanent and irreversible. If you need to suspend a user's access temporarily, change their account to a Temporary User, with an Expiry Date in the past. You can then re-provide access by reversing these steps, although note that the account will automatically close 30 days after the Expiry Date entered.
Access permissions are viewed in the Security section of a User's details page.
To Add, Edit or Delete a permission, select the relevant permission from the grid and click the appropriate button on the command bar.
To change the permission level when adding or editing a permission, use the drop down list, then click Save.
You cannot changing the module or Area. This is considered a different permission and is therefore done by adding a new item and deleting the existing one.
In general the permissions of a user should be kept to the minimum necessary for their role to maintain the security of the system. For example, an Asset manager should only be granted 'Manager' permissions for their specific Area, and be limited to read-only 'Default' permission elsewhere.