Users

Passly (AuthAnvil) > Password Server > Users

The Users page specifies the users who can log into Password Server.

Users table

The Users table displays properties for existing users.

• Display Name - Click a display name to edit settings for that user. These settings are described below.
• Email Address - A unique email address within Password Server.
• Enabled - If , the user is enabled.
• Locked Out - If , the user is locked out.
• Requires 2FA - If , the user requires two factor authentication.
• Last Logon - The last time the user logged on.
• Last Logon Failure - The last time the user failed to log on.

Adding Users

Click the Actions > Add User option to add a new user using three different tabs.

General Settings tab

• Email Address - A unique email address within Password Server. This email is used for logging in as well as for user notifications, such as password expiration, requesting access, and permission approval.
• Display Name - A unique username within Password Server.
• Password / Confirm Password - Enter a matching password in both fields.
• Account Status - Enabled or Disabled.
• Requires two-factor authentication to login - If checked, the user does not use a password, instead using AuthAnvil Two-Factor Auth to log in.
• Allowed to maintain a Private Vault - If checked, the user is allowed to maintain a private vault, where they can keep private passwords. See the section on Private Vaults for more details.
• Allowed to create Shared Vaults - If checked, the user is allowed to create and manage new shared vaults. This permission implies the Allowed to own Shared Vaults permission.
• Allowed to own Vaults and create Personal Vaults - If checked, the user is allowed to be assigned the "owner" permission for shared vaults so that they can manage them. They are also able to manage their own personal vaults.
• Organization Administrator - If checked, the user is an organization administrator, allowed to manage users, settings, and sync agents, and run reports. If the administrator is also assigned the Allowed to own Shared Vaults permission, they can seize control of shared vaults.

AuthAnvil Two Factor Auth tab

This tab specifies the Two Factor Authentication server processing 2FA requests for this user.

Note: The Requires two-factor authentication to login checkbox on the first tab must be checked to access to this tab's settings.

• Use Organization SAS Settings - If checked, use the default Two Factor Authentication server to process 2FA requests for this user. The default Two Factor Authentication server is set on the Settings page. If unchecked, enter values for the following:
  • AuthAnvil SAS URL - Specifies the Two Factor Authentication server used to process 2FA requests for this user.
  • Site ID - Accept the default value of 1. A different site ID number is only required if the Two Factor Authentication server being connected to is operating in multi-tenant mode.

Roles tab

This tab assigns one or more roles to a user. Roles enable scope and vault permissions to be assigned to all members of the same role.

• A user must be assigned to at least one role.
• By default all users are assigned to the Default Role initially.
• When multiple roles are assigned to a user, permissions are added to each other.