Articles in this section

Add, Modify, & Disable Users

Avatar
Stefanie Zasyatkina
  • Updated
Follow

SAM Leads are responsible for managing users' access to SAM. There is no limit to the number of users that can be added and users can be viewed from Security Center.

 

Add a Person Record

Each person accessing SAM should have a unique Person record and login credentials. Login credentials should never be shared. It is important to ensure users have appropriate Permissions to limit their access to information.

In SAM, click My Records (nav bar) > Person > click Add Person > enter minimum details > Save

Minimum Details Recommended: 

  • First and Last Name
  • Person Types = Employee/Staff
  • Main Organization
  • Work Email - this email is used as the Security Email Address for login. This must be a valid, active email account before adding it here. 

 

Enable a User & Login

In SAM, access Person record > click Edit Login/Permissions (sidebar) > enter User Details > Save

User Details: 

  • Check Login Enabled
  • Select Permission Type the user should be granted access to.
  • Enter the user's work email as the Security Email Address for receive MFA and password reset emails. This must be a valid, active email account before adding it here. 
  • Enter temporary Username. User's can change this when they reset their password.
  • Set Time Zone.

An email will be sent to the user's Security Email Address to finish setting up their account.

 

Emails from hello@mysamdb.com

Once a user's account and security email address is set up, they can expect to receive the following emails from hello@mysamdb.com. Please save this email address to your safe senders. 

  • MFA Codes
  • Password Reset
  • Initial Credentials Setup
  • Security email address updated

 

Modify a User's Permissions & Security Settings

In SAM, access User's Person record > click Edit Login / Permissions (sidebar) > adjust settings > Save

You have options to: 

  • Enable or disable the user's login by checking/unchecking the Login Enabled box
  • Update Permission type from the drop down list
  • Verify or update the user's Security Email Address
  • Force user to reset their password
  • Verify or update the user's time zone

 

Force User to Reset their Password

Your security policy may require user's to update their password periodically. If so, SAM Leads can access the User's Login/Permissions screen to require user's to reset their password at their next login. 

In SAM, access the User's Person record > click Edit Login / Permissions (sidebar) > click Password Change Required at Next Login > Save

Disable a User & Login

SAM Leads are responsible for disabling users that should no longer access SAM. This task should be completed immediately for security purposes. Disabled users are no longer shown in Security Center.

In SAM, Access the User's Person record > click Edit Login / Permissions (sidebar) > uncheck Login Enabled > Save

 

Notes on Disabling Users

  • A user's history in SAM will not be deleted after disabling their login.
  • Users should not be deleted to maintain accuracy of Modification History and Activity Tracking audit reports.
  • Option: Enable Auto Action: ADMIN | Team Email | Disable SAM User. This Auto Action is designed to send an email to review a user's login after a period without logging in. Update timing and who receives this message.

Related articles

Comments

0 comments

Article is closed for comments.

Powered by Zendesk