Introduction
Qualer Identity serves as the central access management portal for all Qualer applications. This guide will walk you through managing your organization's users, groups, access control, and identity provider configuration.
Access Structure
Access in Qualer Identity follows a hierarchical structure:
- Applications are linked to security groups
- Users are assigned to security groups
Both assignments are necessary to access installed applications.
Navigation
1. Installed Applications
Purpose: Link applications to security groups
Key Functions:
- View all installed Qualer applications
- Manage which security groups can access each application
How to Grant a Group access to an Application:
- Find the application under "Installed Applications" tab.
- Click the "Enter the group name" dropdown to search or select the security group.
- Select the appropriate security groups for access. Changes are applied immediately.
How to Remove Group access to an Installed Application:
- Find the application under "Installed Applications" tab.
- Click the red "x" to the right of the group. Changes are applied immediately.
2. Users
Purpose: Manage user accounts and group assignments
Key Functions:
- Create new user accounts
- Assign users to security groups
- Manage existing user access
- Bulk import users (via settings cog on the home (Organization/Company) screen)
Adding Users:
- Click "Add user"
- Enter user details
- Save changes
- Select appropriate groups on the list view
3. Groups
Purpose: Create and manage security groups
Key Functions:
- Create new security groups
- View group members
Creating Groups:
Best Practice: Create groups based on roles (e.g., "Administrators", "Technicians")
- At the bottom of all groups, please enter a group name and click on the"+" icon on the right to create the group.
Please note, groups created in Identity will have a unique identifier shown within Qualer Web under Administration -> Configuration -> Security Groups.
This screen will also allow you to synchronize the group manually with the "Sync" and "Sync all" buttons.
These groups can be assigned to specific sites and roles from Qualer Web Administration.
4. Identity Providers
Purpose: Manage SSO and authentication methods
Features:
- View/install identity providers
- Run manual user/group synchronizations
- Monitor connection status
Note: Contact support for provider configuration changes and documentation
5. Security Settings
Purpose: Manage authentication and password policies
Available Configurations:
- Password Expiration
- Login Session Timeout
- Maximum Failed Attempts
- Minimum Password Length
- Auto Login Settings
- Password Complexity Requirements
6. Sign-in Logs
Purpose: Monitor authentication activity
Features:
- Filter by date and time
- View login attempts
- Monitor IP addresses
- Track access patterns
- Review authentication status
Common Tasks
Setting Up New Employee Access
- Create user account (Users tab)
- Assign to appropriate groups
- Verify application access (make sure group is assigned to application)
- Verify sites/roles/permissions assigned to the group in Qualer Web
- Test login
Modifying Access
- Locate user in Users tab
- Adjust group memberships
- Verify new access
Removing Access
- Find user account
- Remove from groups or lock account
- Verify access removal
Best Practices
- Regularly audit user access
- Maintain clear group naming conventions
- Remove access promptly for departed employees
- Review sign-in logs periodically
- Document group structures and purposes
Security Recommendations
- Use strong password policies
- Enable appropriate session timeouts
- Monitor failed login attempts
- Regular access reviews
- Maintain audit logs
Need Help?
Contact Support for:
- Application installation requests
- Identity provider configuration
- Security setting modifications
- Access management assistance
- Bulk user management
Submit a support ticket for assistance.
Remember: Proper access management is crucial for organizational security. When in doubt about any configurations or changes, contact Qualer support.