Introduction
The Users & Groups node allows administrators to manage an application's users and groups. You must first add users or groups before you can manage their access, permissions, and restrictions and they can log in to Kepion.
Note: A group is a set of members (users, roles, and other groups) with shared permissions, access, and/or capabilities that you can manage in bulk. Groups can be created and managed only in Windows Active Directory (AD) and Azure AD, not in Kepion. Learn more.
This article covers:
- Navigating to the Users & Groups node.
- The Users & Groups node's layout and functionality.
- Resources for further learning.
Tip: Explore other ways administrators can customize and configure applications and apps here.
Navigation
Follow the instructions below to go to the Users & Groups node.
1. Go to Administrator and select an application.
2. Go to Users & Groups using the left navigation.
You will land on this page:
View users and groups
You should see a list of all the application's users and groups. The column values provide key information about each user or group.
Column | Description |
---|---|
Name | The name of the user or group. |
Label | The unique name of the user or group in the environment. |
The email of the user or group. | |
Type | The type of user (Identity Provider, Azure, Windows, or Custom) or group (AD or Azure AD). |
Azure Object ID (only for Azure users) | The Azure Object ID of the user or group. |
Manage users and groups
The Users & Groups node offers the following actions to manage an application's users and groups.
Add User
Add a user from an identity provider or a custom user.
Type | Description |
---|---|
Windows User |
A user account from an Active Directory or a local machine. It is only available when the Windows identity provider is enabled in your environment. |
Azure User |
A user account from an Azure Active Directory. It is only available when the Azure AD identity provider is enabled in your environment. |
Identity Provider User |
A user account from a custom identity provider. It is only available when a custom identity provider (e.g., OneLogin or Okta) is enabled in your environment. |
Custom User | A user created in Kepion. It is available in all environments. |
Tip: Custom users allow system admins to test permissions and restrictions, without having to set up or use an account from an identity provider. Learn more.
Add Group
Add a group from Active Directory or Azure Active Directory.
Type | Description |
---|---|
AD Group |
A group from an Active Directory. It is only available when the Windows identity provider is enabled in your environment. |
Azure Group |
A group from an Azure Active Directory. It is only available when the Azure AD identity provider is enabled in your environment. |
Remove
Removes selected user(s) and group(s) from Kepion.
Refresh
Refreshes the list of users and groups to reflect the latest metadata on your server.
Edit custom users
Edit a custom user's Name, Label, or Email value by selecting the Edit icon ( ) and entering a new value.
Sync with AD or Azure AD
Note: To sync, a system admin needs to have integrated Kepion with an AD.
The Users & Groups node offers the following action to update your Kepion users and groups to match your users and group list in AD or Azure.
Sync
Syncs your list of users and groups to the latest in AD or Azure AD.