Administration Users
Overview
Administration Users are where you configure the people who are allowed to access your Symbee Connect Administration Portal for the purposes of administering and viewing the Symbee Connect configuration for your Company - your Administrators.
It's important to note that a user/agent accessing the Symbee Connect desktop UI for contact servicing, needs to be configured in the User Administration section of the portal (see here). Administration Users (configured in this section) only control who has access to your admin portal, not the end desktop UI.
Your first Administration User is always created and set with the highest access control (Security Role) during the initial product signup process, to allow you initial access into your company through the administration portal after signup is complete. After signup, you are free to delete the initial signup admin user if you so choose or to lower its access control (for example, down to Operator).
Exactly what a specific configured Administration User is allowed to see and do is controlled by which security role (or roles) are assigned to that user. During initial sign up, your company is initially set up with six different preconfigured security roles (Administrator being the highest level, and providing access to everything). Administration security roles are fully customizable as needed. See the Security Roles section for further details.
Note: Administration Users and Regions
Administration Users and their passwords (when Single Sign-On is not enabled) are not replicated between regions.
Within a single region (for example, US East, US West, Sydney) an Administrator can have access to all the Environments within the Company for that region (which environments an admin users has access to is configurable - see further below). If you need an administrator to have access to environments in multiple regions, you will need to configure a portal Administration User for them in each of those regions.
Note: Administration User Single Sign-On
Single Sign-On to your Symbee Connect Administration Portal using the administrator's user credentials stored in your corporate directory is available through the use of the Security Assertion Markup Language (SAML). If your corporate directory supports SAML and you want to configure this, refer to Administration User Single Sign-On (SSO).
Company Administration Users
This screen lists all the currently configured Administration users for the region you are logged in to, and which Security Roles are assigned to each.
Options allow you to: Modify, Delete and Add Administration User.
Add New Administration User
Creates a new Administrator that will be able to log into the Symbee Connect Administration Portal.
User Details
User ID
The User ID entered during administration portal login.
User Name
The Administration User's descriptive name for example, first and last name.
Email Address
Enter the user's email address. Why do we need this? This email address is only used as a form of multi-factor authentication in a situation where your administration user forgets their password, and requires a password reset.
Access Control
These settings control what functions and actions the user is able to see and do, as well as which Environments they have access to.
Roles Assigned
The Security Roles assigned to the user. Each security role governs what functions and actions the user is allowed to see and do. If a user is assigned multiple security roles, the user is allowed to see and do the super-set of all functions and actions configured on each assigned role.
Default Environment
If you have established multiple different Environments within your Symbee Connect Company, the default environment pre-selected for the user each time they initially log in to the Administration Portal. After login, the user can then change (if they have access to multiple environments - see below) which environment they are administering via the Environment Selector (the second drop-down menu in the top navigation bar in the portal).
Allowed Environments
If you have established multiple different Environments within your Symbee Connect Company, select which Symbee Connect environments to limit the Administration User visibility to when they log into the portal. To allow access to all environments, don't select any environments here.
Two Factor Authentication
When enabled, after the user has authenticated (either by Password or SSO), the user is required to complete an additional factor of authentication via their configured email address. A one time one-time Security Code is sent via email to the user's configured email address (see further above), required to be entered to complete the administration portal login.
Idle Session Timeout (minutes)
The maximum idle (no activity) time before the administration user is automatically logged out.
Password Management
Set (or reset) the Administrators password and select whether a password reset is required upon next login.
Note: Password management fields are not applicable when Administration User Single Sign-On is enabled, except for users with their Role set to Administrator (with SSO enabled, a user with the Administrator role can also log in with a password, to allow for management of Single Sign-On settings).
Password
The user's password. The password must be at least 8 characters long and contain at least 1 uppercase and lowercase character, 1 number and 1 special character.
Require Password Reset?
Tick the checkbox to force the user to reset their password once they have logged in the first time.
User Lock Out
User Locked Out?
Tick the box to indicate whether the user is locked out. When checked, the user will be denied access to log in. A user will also be locked out, indicated by this checkbox, after too many failed login attempts, based on your Security Password Settings.
Modify
Use the Modify action to update an existing Administration User's settings, role or to reset their password.
Delete
Use the Delete action to delete the one or more selected Administration users.