Versions Compared

Old Version 2

changes.mady.by.user Jonathan Bellard

Saved on

compared with

New Version Current

changes.mady.by.user Jonathan Bellard

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

...

Streamlined User Management Across Multiple Tenants

The User Management section within the Tenant Overview is for performing actions against users across multiple tenants. This is mainly to be used to manage offers comprehensive tools for managing user access and roles across multiple tenants, primarily focusing on Penetration Tester access and other servicing staff management.

...

Info

Tenant Overview access is reserved for security providers only to assist them in servicing their clients.

Key Actions for User Management:

  • Changing a

...

  • User's Tenant Access:

...

    • Search for the user

...

    • to view their current tenant access.

    • For

...

    • users

...

    • with access to more than 5 tenants,

...

    • expand the list by clicking on the attached tenants

...

    • .

    • To edit access, select the

...

Here you can select, Change Tenants.

In the resulting screen you are now able to select the tenants that the user can access.

Changing a Dashboard Role for a User

...

    • ‘…’ button and choose 'Change Tenants'.

    • You can then update the tenants the user has access to.

Image Added

  • Modifying Dashboard Roles:

    • Set default Tenant Overview dashboards for

...

    • users by selecting the Change Dashboard Role option

...

    • for a user to:

      • Project Manager

    - see

      • : Access to Project Management Dashboards.

      • Sales

    - used to apply to

      • : For sales representatives

    in order to see a list of their clients

      • to view client licensing details.

      • Security Consultant

    - used to apply to security providers

      • : For technical staff

    in order for them

      • to view

    what

      • upcoming tests

    are coming up

      • and

    tracking the

      • track report QA

    process

...

      • processes.

  • Adjusting Tenant Overview Permissions:

    • From

...

    • the ‘…’ menu, you can also

...

Other permissions available include:

  • Tenant Overview - Gives the user the ability to see the dashboard of Tenant of Tenants

  • Full User Management - Gives the user the ability to view, edit and remove all users.

  • User Management - Gives the user the ability to view and edit users.

  • Company Management - Be able to create and edit Companies over multiple tenants.

  • Tenant Management - Be able to create Tenants

  • Overview Settings - Give users the ability to edit settings that effect Prism as a whole.

  • Generic Database Access - The user has access to import and create generic database issues

  • Generic Database Admin - The user has administrator privileges to add and approve issues and create issue tags

  • Notification Centre Management - The user has access to send platform wide notifications to tenants (this is a sensitive rule and must only be applied to relevant users)

Reset Tenant Level Permissions

The bottom half is in relation to resetting the users tenant level permissions. This is the ACLs that you setup originally. Here you are able to downgrade/upgrade a user’s access to prism by selecting from the available user roles.

When selecting a role or roles and hitting the Confirm button, Prism will set that same ACL group to all the tenants they have access to. Thus saving the PMO member time, instead of having to go into each tenant individually to do the same operation.

...

    • change a user's permissions, including access to Tenant Overview, Full User Management, and other critical functions.

  • Reset Tenant Level Permissions:

    • Modify a user's access level by selecting from available roles. This applies the chosen ACL group across all tenants the user has access to, streamlining the process.

  • Reset 2FA and Removing a User

...

  • :

    • The platform allows for resetting 2FA, requiring users to set up a new 2FA account.

Deleting a user in Prism is done in two steps.

...

Disable A User – Prism will disable a user first of all. This will remove access to Prism for the user, any comments made by that user will still be present in the platform for context but the user is not visible in any user lists.

...

    • Users can be disabled (removing access but retaining comments for context) and then deleted entirely, with their comments being replaced by a system user to maintain an audit trail.

Steps for User Management Actions:

  1. Access User Management: Navigate to Users from the sidebar menu.

  2. Change Permissions: Select ‘Change permissions’ from the user’s options.

  3. Assign User Role: Choose a role from the dropdown and confirm the permissions summary by saving.

  4. Remove a User: Utilize the option to ‘Edit permission’ for adjusting roles or ‘Delete’ for removing user access entirely.

Ensuring Secure and Efficient User Administration:

This section of the Platform ensures that managing user roles and permissions across multiple tenants is both secure and efficient. By providing detailed control over user access and capabilities, the Platform facilitates the precise management of service staff and enhances the security of your cybersecurity operations.