SECURITY SETUP - USERS

IMPORTANT NOTE: Converted dbf databases will have their current users entered as ManexCloud users.  However, their passwords will need to be reset and the admin may have to populate additional fields.

AVAILABLE ACTIONS

From this screen, the system admin can:

1. Add new users
2. Change user permissions
3. Delete existing users

IMPORTANT FIELDS

1. Username - this is what the user will enter along with their password to login.
2. License Type - the type of license the user will consume when they login.  If the selected type is not available, the user will consume the next higher type (if available) until all seats are used.  This means if all limited user such as customer, supplier or View only license seats are full, but a full user seat is available a limited user logging in would consume a full user seat except for the "Data Collection" License type(see more on this type below).  This ensures maximum access and allows companies to setup limited users even before they have actually purchased a limited user license.  NOTE: while an admin can't grant access (by group) to areas of the system blocked from limited users even if the user is assigned to the limited users License Type, they will not be able to access those areas as long as their type is "Limited".  See the list of Roles permitted if a user has a license type of Production, below.  However, user may add group assignments to expand their roles. If user type is "Data Collection" it will allow the user when logged in to not consume a license . However the user can only perform scans in SFT-BC to transfer product between work centers and nothing else. 
3. Work Center - the default Work Center to use in the Time Log management
4. Initials - the users initials.  These will be visible in the system on various transactions to indicate who performed the action
5. First Name - users first name
6. Last Name - users last name
7. Email Address - users email address.  This is the address that will be used for password reset and system notifications, it is important that it be a valid address for full functionality
8. Super Users Section - allows the admin to assign users as super users for each indicated section.  Production Super User:By clicking your mouse on this field, you automatically assign full supervisory rights to all production screens and reports in Manexcloud and it is not necessary to assign any production group rights as they are ignored if this check box is active.  Accounting Super User: By clicking your mouse on this field, you automatically assign full supervisory rights to all accounting screens and reports in Manexcloud and it is not necessary to assign any accounting group rights as they are ignored if this check box is active. Company Admin User: By clicking your mouse on this field, you automatically assign full supervisory rights to all accounting and production screens, all reports, and all setup screens in Manexcloud and it is not necessary to assign any individual group rights as they are ignored if this check box is active. Note company admin rights are the highest rights one can have and trump all other super user rights or group rights if activated for user.
9. Password Settings Section - allows the admin to block/permit pw changes for each user, set how often the pw must be reset, and set session timeout limits.  NOTE: session timeout should NOT exceed the current IIS and SQL db session limits (default is 20).  Admins can adjust those limits as needed.  NOTE:  When a user is created, the password is automatically saved as "default".  When the user logs in for the first time, they will be asked to change their password.  (A password MUST be at least 6 characters).
10. User Type Section - "Exempt" checkbox is for information only and is not used by the system.  "External" is an important switch on what type of record access should be defaulted.  External users CANNOT access any customer or supplier records unless specifically checked in the related boxes below.  "Internal" users will default to access ALL customers and suppliers UNLESS specific records are selected.  If some are checked, then the "Internal" user will have access to only the records for the selected companies.  
    

11. User Groups Section - a list of setup Groups in the system.  The admin can grant system access simply by assigning appropriate groups based on the users roles in the company.

1. Users can be assigned to as many or as few groups as desired.  Groups with overlapping permissions will not cause issues.  NOTE: If the user is assigned to two groups with overlapping permissions, removing one of those groups will NOT affect the permissions for the remaining assigned groups.  This means that the admin must remove access to ALL groups with permission to access a specific screen in order to remove access to that screen. For this reason, it is suggested that groups have a targeted role selection.
2. If the admin wants to create special and specific access for a single user, they can create a special group just for that user and assign only that user to that group
12. Available Customers Section - this is where the admin determines which records in approved modules the user can access.  "External" users can access records in approved modules for only those customers selected in this section.  "Internal" users have access to ALL customers UNLESS specific records are selected, in which case they will be able to access records only for those companies selected.  NOTE: not all areas have this restriction at this time so it is important that the admin verify specific record access restrictions to ensure compliance with any regulatory requirements before granting access for the user to the module.
13. Available Suppliers Section - this operates just like "Available Customers" with the focus on Suppliers instead of Customers.

**Available Customers/ Suppliers Section : 

For example 'External' users are generally restricted to certain customers/suppliers. As you can see in the screenshot below this 'External' user only has access to those selected Customers and Suppliers. These same restrictions can be applied to 'Internal' users, if you wanted them to only have access to certain Customers/ Suppliers.

 'Internal' users generally have access to all Customers and Suppliers at all times. In this case, we recommend not checking any Customer and/or Supplier. Leaving everything unchecked, gives the user access to all  Customers/Suppliers, including new ones added. As soon as you select one or multiple Customer/ Supplier that will then restrict access to only those selected.

 

Login to MANEX Cloud and find the Setup group.

Select User Administration

Select the "Add User" button and the following screen will be displayed: 

Enter a User Name and Select the License Type from the pull down selection. You can also fill out any other available details at this point: 

NOTE:The system will remove access to ALL other modules and screens when the user is assigned to a production user license. Then, when the user logs in, their session will go under the production license and consume the production license seats. Users assigned to the production user license can be granted access to anything accessible from the Shop Floor Tracking Screen. This means in the security setup all options will be hidden except for: Shop Floor Tracking, Shop Floor Tracking by Bar-Code, Time & Attendance, Statistical Quality Control, and PDM. Of course, companies will have to own the module in order to be able to grant access.

The following is a list of Roles that will be permitted if a user has a license type of Production.

When the admin selects the groups for the user, all the related roles are assigned.  Then, when the user logs in, it checks the license type and strips out all roles not on that list (if not a Full license type).

"BOM_View","BOM_Print",

"CAR_View",

"CONTACTS_View","CUSTOMER_View",

"ECO_View",

"KIT_View",

"ROUTING_View",

"DFCTENTR_Add","DFCTENTR_Edit","DFCTENTR_Delete","DFCTENTR_View",

"SHOPFLBC_View","SHOPFLBC_Add","SHOPFLBC_Edit","SHOPFLBC_Delete","SHOPFLBC_Print","SHOPFLBC_Price","SHOPFLBC_Setup",

"SHOPFLWC_View","SHOPFLWC_Add","SHOPFLWC_Edit","SHOPFLWC_Delete","SHOPFLWC_Print","SHOPFLWC_Price","SHOPFLWC_Setup",

"SHOPFLWO_View","SHOPFLWO_Add","SHOPFLWO_Edit","SHOPFLWO_Delete","SHOPFLWO_Print","SHOPFLWO_Price","SHOPFLWO_Setup",

"TIMELOG_Add","TIMELOG_Delete","TIMELOG_Edit","TIMELOG_View",

"WO_View",

"WRKCAPCT_View",

"WRKINSTR_View"

Enter a Work Center (if applicable), enter the users Initials, First Name, Last Name, Email (if applicable), and check any boxes that pertain to this user:

Super Users:  Checking these boxes will override the license Type rights. If the Accounting Super User box is checked this user will have full rights to all Accounting modules, if the Production Super User box is checked this user will have full rights to all Productions modules, if the Company Admin User box is check this user will have full rights to all Accounting and Production modules.

Email Address: If users want to allow for duplicate email addresses for their users (e.g. they want all production users to connect to the same email address), then they need to make this change in the web.config file

<membership defaultProvider="CustomizedMembershipProvider">

      <providers>

        <clear />

        <add name="CustomizedMembershipProvider" type="System.Web.Security.SqlMembershipProvider" connectionStringName="eManEx" maxInvalidPasswordAttempts="10" minRequiredPasswordLength="5" minRequiredNonalphanumericCharacters="0" requiresQuestionAndAnswer="false" enablePasswordRetrieval="true" passwordFormat="Encrypted" applicationName="Manex" requiresUniqueEmail="false" />

      </providers>

    </membership>

Depress the "Add User" icon to add the new user. NOTE:  That when a user is created, the password is automatically saved as "default".  So, when the user logs in for the first time, they will be asked to change their password.

If there was a problem found a warning will be displayed at the top of the page and the field will be displayed in RED, as displayed below:

Once the problem has been fixed a noticed will be displayed at the top of the page that the "User was added successfully"

NOTE:  That when a user is created, the password is automatically saved as "default".  So, when the user logs in for the first time, they will be asked to change their password.

Highlight user on left and the following screen will display all the detail for this user only.  

  

 

 

 

 

This screen also contains four function Buttons:

-  Save all changes to user. 

- Delete this user. 

- View this user's roles.

- End this user's session. 

When the "View Roles" icon is depress a screen will be displayed showing all the modules they have been assigned to within ManEx: