Countly provides a way to manage different types of users (i.e., global admin, admin, or user). Each user will be able to do what has been assigned to them. For example, you may want your marketing team to be able to see only the whole dashboard, whereas the website manager, working as the global admin, may easily add/remove applications, define other users, and manage the entire interface.
Different types of users have different authorization levels:
- Global admin can add, remove, or edit users; add, remove, or edit applications; and typically do whatever is assigned to them on the user interface. This is the most powerful user.
- Admin can manage applications, e.g., add an application, edit it, or remove it completely from the management dashboard.
- User is basically at the bottom of the hierarchy, and can only see the Dashboard, without having the ability to manage other applications and users.
All 3 types of users can send push notifications, are able to download raw data, and use the API to read data from MongoDB directly.
Using User Management
Manage Users
Upon going to Management > User Management, you will find the following View by default.
Here you will find:
- Tabs for managing individual users or to manage groups. By default, the Users tab will be selected.
- Table with the list of users. You can filter, search, or download the information or edit the columns with the controls on top of the table.
- Menu for managing each individual user. Note that restrictions to these actions will depend on your role. The global administrators can remove the failed logins of a user. This option allows users who exceed the maximum number of failed login attempts and incur a temporary ban to reset their failed login count and remove the time ban.
- Button to create new users.
Creating Users
In order to add a user, you must be the global admin.
Also, make sure Restrict Access is enabled. To do so, in the Sidebar, go to Management > Feature Management and enable the Restrict Access toggle.
To add a new user, click + Create User to access the following drawer:
Here you can enter user information and credentials. Fill in the details here and click Create User.
If in Role, Global Administrator is not checked, the following options will appear, so as to select the permissions the new user or admin will have and for particular applications.
Here, the Admin use the checkboxes for particular permissions, for individual features of Countly, or both. You can use the search bar to search for specific feature(s) to which you want to grant access. You can also fine-tune the restrictions for specific applications using the + Add Additional User Permission Set .
Active Directory and Okta integrations
When you use AD or Okta integrations in Countly Enterprise, user and group management is completely hidden, and all management is carried out with AD or Okta rules.
Manage Groups
The control of users and groups is a core element of Countly. While you may define a user without a group, you may also define a group and put each user into that particular group to benefit from easy administration. While creating a group, the administrator defines what the users in that group can do, and then adds users accordingly.
In order to define a group, go to Management > User Management.
Creating New Groups
The logic is similar to how new individual users are created.
Here, you should define the particular properties of this group, such as which apps will those users have access to, or which sections they will be able to create, read, update, or delete. You can also use the search bar to search for specific feature(s) to which you want to grant access. If you mark the Global Administrator checkbox under Role , all permissions will be set to true.
Division of Data Manager Permissions
Data Manager permission has been divided into 3 parts:
- Data Manager: Redaction - Redaction is the systematic procedure of eliminating confidential or sensitive data to make it suitable for sharing with a larger audience. Its purpose is to facilitate the controlled sharing of information. Data Redaction will cover the redaction functionality for user properties.
- Data Manager: Transformations - Data transformation is the structured process of changing, cleaning, and arranging data into a format that’s easy to work with. This helps in making better decisions by analyzing data effectively. Data Transformations will cover everything related to transformations (for both events and user properties).
- Data Manager - will cover the rest of the rights.
Note: The CRUD permission dependencies are different for each one of them; for example- when you select the read operation of Data Manger: Transformations, the read operation of Data Manager is automatically selected for you.
After you create your group, it will look like this:
Here, we have defined 3 different groups. You may define as many groups as you would like depending on your granularity requirements. After creating a group, when a new user is added, those groups are viewable under User Groups, as shown below.