User management
The following rules apply to this screen table of users
Unauthorised
The only users who SHOULD NOT have ‘Unauthorised’ next to their usernames are users who log in and successfully authorise their account via the ‘Welcome Email
The only users who SHOULD have ‘Unauthorised’ next to their usernames are:
- Active users who have logged in AND have recently been sent a ‘Welcome email’
- Users who have never logged in AND they have recently been sent a ‘Welcome email’
- Users who have never logged in
Last access
When a user successfully logs in and therefore authorises their account, they will have a ‘Last accessed’ date/data which should display in the ‘Last access’ column of the User management table.
Welcome emails
When a site admin filters by ‘Authorised users’ and chooses to ‘Send welcome email’ they should NOT be able to send the welcome emails to:
- Blocked users
- Unauthorised users
- Blocked and unauthorized users
Authentication settings
A site admin can now add a URL for ‘IT support’ link. This link displays on the alert message for authentication screens.
User imports
User’s email address changed
- As an existing intranet user
- When a user import has taken place
- And this import results in one or more email address details being updated
- Then the users with those new updated email addresses should receive a new email informing them
- That their details have been recently updated
- And that they will need to sign in with their new email addresses and also create a new password
User’s mobile number is the same as another site user
- Import for these users will import successfully if InvotraAuth is not enabled
- Adding a mobile number for a user that is the same as another user is possible if InvotraAuth is not enabled
IP Whitelisting
- Customer sites that are not on the public web need to have specific IP addresses for site users enabled to access the site
- This is configured and managed by Invotra for customers
Auto Provisioning
- This allows someone who is not an existing intranet user to authenticate with a SSO provider (used by their organisation) to sign into the intranet and create an account
- New users can access this site but only their email address details will display on their profile. Until such time additional user profile details are added manually or via an import