🔍

User Management

Administration

Overview

User management in mindzie Studio enables administrators to control who can access the system, what they can do, and how they authenticate. This section covers user creation, role assignment, permissions, and the special service account feature for cross-tenant access.

User Management Functions

Core User Operations

  • Create Users - Add new users to your tenant
  • Assign Roles - Grant appropriate permissions through role assignment
  • Manage Permissions - Control access to specific features and data
  • Deactivate Users - Remove access while preserving audit history

Advanced Features

User Types in mindzie Studio

Regular Users

Standard users who access a single tenant:

  • Authenticate directly to their assigned tenant
  • Have permissions only within their tenant
  • Cannot access other tenants without separate accounts

Service Accounts

Special users designed for multi-tenant access:

  • Authenticate at a designated "home tenant"
  • Can access multiple tenants with appropriate permissions
  • Limited to Tenant Admin and Administrator roles
  • Learn more about Service Accounts

User Roles

mindzie Studio uses role-based access control with five primary roles:

Administrator

  • Full system access
  • Can create and manage tenants
  • Can promote users to service accounts
  • Manages system-wide settings

Tenant Admin

  • Full access within their tenant
  • Can manage users and permissions
  • Can be promoted to service account
  • Cannot create new tenants

IT Admin

  • Technical configuration access
  • Manages integrations and connections
  • Cannot modify user permissions
  • Cannot become service account

Analyst

  • Access to analysis tools and reports
  • Can create and share dashboards
  • Limited administrative access
  • Cannot become service account

Developer

  • Access to development tools and APIs
  • Can create custom integrations
  • Limited administrative access
  • Cannot become service account

Managing Users

Adding New Users

  1. Navigate to Administration -> Users
  2. Click Add User
  3. Enter user details:
    • Name
    • Email address
    • Initial role
  4. Configure authentication method
  5. Send invitation email

Editing Existing Users

  1. Navigate to Administration -> Users
  2. Find the user in the list
  3. Click Edit
  4. Modify user properties:
    • Role assignment
    • Permissions
    • Service account status (if eligible)
  5. Save changes

Bulk Operations

For managing multiple users:

  • Bulk Import - Upload CSV with user details
  • Bulk Role Assignment - Change roles for multiple users
  • Bulk Service Account Promotion - Convert eligible users to service accounts

Service Account Management

Service accounts are a powerful feature for organizations that need cross-tenant access:

When to Use Service Accounts

  • Consultants working with multiple client tenants
  • Support Staff providing assistance across tenants
  • Integration Accounts for automated cross-tenant processes

Creating Service Accounts

  1. User must have Tenant Admin or Administrator role
  2. Navigate to user management
  3. Select eligible user
  4. Enable service account status
  5. Assign home tenant
  6. Detailed Guide

Security Best Practices

Account Security

  • Enforce strong password policies
  • Enable multi-factor authentication
  • Regular access reviews
  • Prompt deactivation of unused accounts

Service Account Security

  • Limit service accounts to essential users only
  • Regular audit of cross-tenant access
  • Monitor service account activity
  • Document business justification

Permission Management

  • Follow principle of least privilege
  • Regular permission audits
  • Document special permissions
  • Use roles rather than individual permissions

Common Tasks

Resetting User Passwords

  1. Navigate to user management
  2. Select the user
  3. Click Reset Password
  4. User receives password reset email

Changing User Roles

  1. Find user in user list
  2. Click Edit
  3. Select new role from dropdown
  4. Confirm change
  5. User permissions update immediately

Deactivating Users

  1. Locate user account
  2. Click Deactivate
  3. Confirm deactivation
  4. User access removed immediately
  5. Audit history preserved

Troubleshooting

User Cannot Log In

  • Verify account is active
  • Check authentication configuration
  • Confirm correct tenant URL
  • Reset password if needed

Missing Permissions

  • Verify role assignment
  • Check tenant-specific permissions
  • Review recent changes
  • Confirm user is in correct tenant

Service Account Issues

  • Verify home tenant assignment
  • Check cross-tenant permissions
  • Confirm eligible role (Tenant Admin or Administrator)
  • Review authentication flow
An error has occurred. This application may no longer respond until reloaded. Reload ??