第1章 User and group management
Business Central defines three types of entities for security management: users, groups, and roles. You can assign permissions to both roles and groups. You can assign the following roles in Business Central:
- process-admin
- manager
- admin
- analyst
- developer
- user
User roles in the application Role Registry have a role identifier, whereas user groups do not.
Use Business Central to create and manage as many users and groups as you require. A user must be assigned to at least one user-specific role to log in to Business Central. User privileges depend on permissions from the groups and roles that the user is a member of. Note that the role or group priority is considered if a user has several roles or groups assigned to it.
1.1. Creating users
User privileges and settings are controlled by the roles assigned to a user and the groups that a user belongs to. You can create any number of users in Business Central.
Do not create a user called unknown
in process engine or Decision Server. The unknown
user account is a reserved system name with superuser access. The unknown
user account performs tasks related to the SLA violation listener when there are no users logged in.
Procedure
- In Business Central, select the Admin icon in the top-right corner of the screen and select Users.
- Click New user, enter a user name, and then click Next.
- To assign roles to the user, click the Roles tab, click Add Roles, select the desired roles, and click Add to selected roles.
- Optionally, to assign groups to the user, click the Groups tab, click Add to groups, select the desired groups, and click Add to selected groups.
- Click Create.
- Click Yes to set a password for the user, enter a desired password, and click Change.
The user must have at least one role to access Business Central.