CardExchange Solutions Documentation

Visitor Authorizations - Create User Authorizations

Owned by Roman Villandry
Jun 03, 2019
5 min read

Creating User Authorizations starts with creating and/or managing groups. In this first page of the wizard, you find two important areas; The Group information group, indicated with the red rectangle, and the Authorizations general settings, indicated with the blue rectangle. The explorer on the left side shows all the available and created groups.

Important! There is always one group available; the Admin group. This group cannot be removed.

With the Authorizations general settings group you can indicate when the passwords need to expire. For example, putting in 30 means that after 30 days all users, when they log in, are requested to change their password. When leaving it to 0, passwords will not expire.

In the Group information section, you see the Group name and the Group description. It also contains the Add and Remove button. To Add a new group, click on the Add button.

You can now enter the Group name, make sure you chose logical names, and Group description.
The newly created group will appear in the explorer on the left side as indicated.

In this example, we have created a group for data entry, and a group for badge production. There are no limitations on the number of groups you can create.

If you want to delete a created group, just select the group in the explorer on the left side and click on remove. Confirm with Yes to delete! Deleting a group does not delete your users!

When you are done adding groups you can proceed to the next level of the wizard by clicking Next.

User Management

In this page of the wizard, you can create new or edit existing users of the system. On the explorer on the left side you can find all the available users, on the right side you can find all the user information.

When you click on Add, to create a new user, you will need to provide a User name, this is the name used to login to CardExchange® Visitor, enter a Full name of the user, and enter a Password and Confirm the password.

Just like in the Group Management page of the wizard, we also have one special user; Admin. The Admin account cannot be removed! What you can change is the password of the Admin user and we advise to do so but keep in mind changing the password means that you need to remember the password. There is no option to retrieve or reset the Admin password.

The default user name for the Administrator account is Admin and the Password is Admin too! Passwords are case sensitive!

Important! The Administrator has always access to all defined groups and users!

In the area indicated with the red rectangle, you find two special options. If you want the user to generate their own password, just check the box User must change the password at next login. This can be handy if you have a lot of different users to create but you do not want to send out all these different passwords.

When you select this option, you can simply use a standard password which first needs to be changed before the user can log in to the system. If you have, like in this example, a group account it is better not to use.

Disabling the user is also a handy option. By checking this box, the user cannot log in to the system anymore but is not removed from the system. If later the user needs to get access to the system again, simply uncheck the User is disabled box and access is granted again.

In the section indicated with the blue rectangle, you can specify per user to which group it will be assigned. Each user can be assigned to one or multiple groups. In this example, it makes sense that the Production user is assigned to the Badge Production group but you can imagine that some users need to have access to multiple groups.

When you have created or edited all your users of the system and assigned them to the correct groups, you can proceed with the Authorizations management on the next and final page by clicking Next.

Authorization Management

In this last page of the wizard can assign and create the profiles per defined group or a specific user. In the explorer on the left side, you can see all the created groups. If you click on the expand sign you can see the assigned users of the group.

On the right side, you have nine separate sections dividing the available CardExchange® Visitor functionality. When you click on the expand sign for each section, the corresponding functionality will be shown. For example, in the Data section, all options for finding/importing/exporting are shown. Each section and each functionality has a checkbox indicator. There are basically three options

No access to functionality - This means that the functionality is not available in the interface. It is not greyed out, it is totally removed.

Access to functionality - This means that the functionality is available for the user of the system.

 

Administrator or selected users and groups only - This means that the functionality is either enable at a group level, or it is functionality that cannot be disabled (Such as the "About CardExchange® Visitor" button)

Besides creating the policies for the groups, each separate user can have some additional rights besides the group profile. Simple select the user name from the explorer on the left and set the additional authorizations for this user.

When you have defined all the groups, users, and assigned to the functionality allowed for this group and/or user, you can click on Finish to store your account definitions and close this wizard.