Assign Roles to a User Account in Privilege Management Console

  1. Navigate to and click the Users tile.
  2. Right-click on the user you want to assign a new role to and click Assign Role. This section allows you to change the role that is assigned to the user.
  3. Click Submit to save your changes.

Users

Each user in PMC must exist in your authentication provider. Each user is assigned a role which determines what actions they are allowed to perform in the PMC portal and Privilege Management MMC snap-in.

The PMC dashboard showing the Users tile.

Create a User Account in Privilege Management Console

Once the initial administrator account has been created and authorized, you can create additional user accounts in PMC with whichever roles are needed. You can also create future accounts with the Administrator role by following the same process outlined below.

 

The user needs to exist in your authorization provider before you add that user in PMC.

User Creation Process

  1. Navigate to and click the Users tile.
  2. Right-click anywhere on the grid and click Create User.

Create a New User

  1. Enter your email address.

    For Active Directory Federation Services (ADFS) this must take the form:

    <username>@<ADFS Domain>.com

    For Azure AD this must take the form:

    <username>@<tenantname>.onmicrosoft.com

Create a New User Screen

  1. Enter the user's information into the fields in the Create User box that appears on the new page.
    • Enter the user's Email Address.
    • Select a Role for the new user.
    • Choose the Time & Date format for the new user and their appropriate Time Zone from the dropdown menu.
  1. Click Submit to create your user.

 

This workflow has been tested and is supported by Azure AD. Other providers may work, but have not yet been tested.

Registration and User Confirmation

Once a user account has been created in PMC, an automated email reponse should be sent to the user's email address that was provided during the creation process.

You've been invited to access applications

  1. Navigate to your email application and look for a Microsoft Invitation that will grant you access to PMC.
  1. Click the Get Started button in the email to be directed to the invitation landing page.
  2. Review permissions and click Accept to continue the process.
  3. Log in using your credentials.

 

Resend User Invites

An email invitation can be resent to a user that has not accepted their invite to the PMC Portal.

  1. From the Users grid, find the corresponding user in the list of emails.
  2. Right-click the email address of the user that hasn't joined and select the Resend Email Invite option.

Resend user invites from list

There is no limit on how many times an invitation can be sent to a user.

View Details of a User Account in Privilege Management Console

  1. Navigate to and click the Users tile.
  2. Right-click on the user you want to view the details for and click Details. This section shows you the details for the user. You can add annotations if required. You can also edit the details of the user here.

For more information, please see Edit Properties of a User Account in Privilege Management Console.

Edit Properties of a User Account in Privilege Management Console

  1. Navigate to and click the Users tile.
  2. Right-click the user you want to view the details for and click Edit Properties. This section allows you to edit the details for the user. You can edit details such as the account name, email address, the time and date format, as well as the time zone.
  3. Click Submit to save your changes.

After changing either the date/time format or the time zone, be sure to log out and back in again for the changes to take effect.

Assign Roles to a User Account in Privilege Management Console

  1. Navigate to and click the Users tile.
  2. Right-click on the user you want to assign a new role to and click Assign Role. This section allows you to change the role that is assigned to the user.
  3. Click Submit to save your changes.

Disable a User Account in Privilege Management Console

  1. Navigate to and click the Users tile.
  2. Right-click the user you want to disable from details and click Disable.
  3. You are prompted to confirm if you want to disable the user. Click Disable Anyway to disable the user; otherwise, click Cancel. You can enable the user again later, if required. The row flashes green to indicate that PMC has processed your request and the user is removed from the grid if you are using the default view.

Users that are disabled are not shown by default. To view users that are disabled, click the hamburger icon on the top right of the grid and click Disabled to show the Disabled column. You can now change the filter for the Disabled column to show those users who have been disabled.

For more information, please see Enable a User Account in Privilege Management Console.

Enable a User Account in Privilege Management Console

Disabled users are not shown by default. To view users that are disabled, click the hamburger icon on the top right of the grid and click Disabled to show the Disabled column. You can now change the filter for the Disabled column to show those users who are disabled.

  1. Navigate to and click the Users tile.
  2. Right-click on the user you want to enable and click Enable.
  3. The row briefly flashes green to indicate that PMC has processed your request and the user is now enabled.