This article explains how to add additional users to an existing group so that they can retain and use all of the group's existing permissions on specific data rooms as well as any roles for managing DRACOON that have been assigned to the group.
It also covers how to remove a user from a group to which they previously belonged, so that they lose the group's existing permissions on specific data rooms as well as roles for managing DRACOON that have been assigned to the group. This can be useful, for example, if a user changes department.
Topics of this article
Who can add or remove users from groups?
Only users who have the role Group manager are allowed to add or remove users from groups.
Exception: If you have connected an Active Directory or a user directory via OpenID Connect to DRACOON, a user with the role Configuration Manager that new users are automatically added to a certain group at the first login without the intervention of a group manager (admittedly, a group manager must have created this group beforehand).
Add user to a group
- Click Settings in the left sidebar and then Groups.
-
Highlight the group to which you want to add users.
To quickly find a desired group, type part of the group name you are looking for at the top of the Search Group field and press the ENTER key.
- Click Manage Members in the group's context menu or click the Members button to the far right of the desired group.
- A list of the previous members of the group is displayed.
Click Add User in the right sidebar (the command is only visible as long as you do not have a user highlighted in the list).
The dialog box for adding users is displayed. - In the Select user field, type part of the name of the user you want to add to the group until the desired user appears in the search result.
If a user does not appear in the search result, he is probably already a member of this group.
Click the user in the search result to select him for the group.
If you want to add more users to the group, repeat step 5 for each additional user. - Finally, click the Add user button.
- The selected users are added to the group and thus receive the group's permissions on data rooms as well as any roles for managing DRACOON that the group holds.
Users are immediately notified automatically by email to which groups they have been newly added to (unless they have deactivated Notification.
Note that new group members may not be able to use all the data rooms that the group has access to, because some room administrators may have activated in their rooms that they can use the enabled for the group that they can check each new group member first möchten, before they allow it to use the data room; room administrators can permanently block certain new group members from the room. blocked. Group managers have no influence on this.
Automatically add new users on first login via Active Directory or OpenID Add Connect to a specific group
If under Settings > Authentication an Active Directory or another user directory is connected to DRACOON via OpenID Connect, the automatic addition of new users to a specific group at the first login can be activated there. In this case users, who authenticated themselves for the first time with DRACOON over the Active Directory and/or OpenID Connect, are assigned automatically to a certain group in DRACOON and can be entitled in this way e.g. to certain data rooms, which are available then immediately with the first start for the new users..
Who is allowed to enable automatic addition of new users to a specific group when logging in for the first time via Active Directory or OpenID Connect?
Only users who have the role Configuration Manager are allowed to enable the automatic addition of new users to a specific group the first time they log in to DRACOON via Active Directory or OpenID Connect to DRACOON for the first time.
Enable automatic addition of new users to a specified group at first login via Active Directory
If you have already connected an Active Directory to DRACOON, you can activate the automatic addition of new users to a specific group as follows:
- In the left sidebar, click Settings and then Authentication.
- Click on the Active Directory tab.
- Click the pencil icon next to your Active Directory entry.
- The Configure Active Directory Server dialog box is displayed. Activate the Automatically create local users checkbox, if it is not already activated..
The switch Create local users causes that a user, who logs on for the first time via the Active Directory to DRACOON, is created automatically in DRACOON - this is a prerequisite that new users can be added automatically to a group.
- Enter the name of the group in the User group field to which new users who authenticate to DRACOON via Active Directory should be added automatically. Beispiel:
-
You can select only one group at this point - it is not possible to add new users to multiple groups automatically.
Enable automatic addition of new users to a specified group on first login via OpenID Connect.
If you have already connected an OpenID provider to DRACOON, you can activate the automatic addition of new users to a specific group as follows:
- In the left sidebar, click Settings and then Authentication.
- Click the OpenID Connect tab.
- Click the pencil icon next to your OpenID provider entry.
- The Configure OpenID Provider dialog box appears. Activate the Automatically create local users checkbox, if it is not already activated..
The switch Create local users causes that a user, who logs on for the first time via the OpenID provider to DRACOON, is created automatically in DRACOON - this is a prerequisite that new users can be added automatically to a group.
- If you want created new users to be automatically added to a specific DRACOON group right away, enter the name of the group in the User group field. Example:
You can select only one group at this point - it is not possible to add new users to multiple groups automatically.
Remove a user from a group
- Click Settings in the left sidebar and then Groups.
- Highlight the group from which you want to remove a user.
To quickly find a desired group, type part of the group name you are looking for at the top of the Search Group field and press ENTER.
- Click Manage Members in the group's context menu or click the Members button to the far right of the desired group.
- A list of the previous members of the group is displayed.
Highlight the user you want to remove and click Remove User in the context menu or the right sidebar.To quickly find the user you want to remove in a large group, type part of the username you are looking for at the top of the Search User field and press ENTER.
- Confirm the query whether the user should really be removed from the group.
- The user is removed from the group and no longer has the group's permissions for specific data rooms and any roles for managing DRACOON.
If a group has only one user, this user cannot be removed from the group as long as the group is the only room administrator in certain data rooms or the only owner of a certain role to manage DRACOON.
Comments
0 comments
Article is closed for comments.