User maintenance form
Last updated
Was this helpful?
Last updated
Was this helpful?
You access a user’s account, known as a maintenance form, when you . The form contains several details fields, permissions and other settings, organized into tabs. Depending on your profile, you might not see all the tabs.
If you make any changes to any tabs on this screen (user maintenance form), ensure you click Save to save and apply those changes. If you click Close or move to a different tab, your changes are not saved.
The User tab displays when you are adding a new user account (other tabs display afterward) and it is the default tab that displays when you open an existing user account. This tab has the following settings:
Username (mandatory): This is the name the user will use to sign in to Phocas. This usually matches the user's network sign-in name.
LDAP Authenticated?: This setting is only available on LDAP configured implementations. It indicates which authentication method is been used. If the checkbox is selected, the user is authenticated against the LDAP server. If the checkbox is not selected, the user is authenticated against Phocas. If the user is being added from a source other than Active Directory, an additional Password setting is available. See .
SAML Authenticated?: This setting is only available if the feature is turned on for your Phocas site, in which case the checkbox is selected by default.
Windows or SQL user name: This setting is only required for older desktop versions of Phocas.
Email*: This is the user's email address. Users need a valid email address to receive subscriptions. New users on the current version of Phocas will be asked to enter an email address the first time they sign in, unless one has already been entered here.
Display Name (mandatory)*: This is the name that displays on the User menu.
Phone, Cell and Home*: These are the user’s telephone numbers.
Language*: This is the user’s language. Selecting a different language from the list will translate the text when the user next signs in; however, it does not translate the names of measures, properties or dimensions, as these are defined by the data in each . If this setting is left blank, the default system language will be used.
Timezone*: This is the user’s timezone.
Home: This is the user’s default homepage. You can either leave this blank to present the user with a homepage listing the databases, dashboards and favorites to which they have access, or select a dashboard (to which they have access) as their default home screen.
Show splash screen*: This setting controls whether a splash screen displays when the user signs in to Phocas or not.
Group, Territory and Team: These settings are only available if you have the Administration > Users: All Users permission. These items make easier and allow filtering in some areas of Phocas.
Password: This setting determines if the user receives sign-in details by email.
Auto-generate password: If selected, this automatically creates a password that conforms to your site's (as long as your site uses the default Phocas authentication), which is always used in conjunction with the Email details to user setting below. See .
Force password change: If selected, when the user first signs in, the system forces them to enter a new password.
Email details to user: This is only available if the details are configured and the user has an email address. If selected, it sends the URL, username and password to the user in an email.
License: This is the user’s Phocas (Full or Viewer) and access to the CRM and Rebates modules.
Permissions: These are high-level, site-wide settings applicable to the user.
General > Account Locked: This setting controls whether the user’s account is locked.
General > Detailed Logs: This setting controls whether every query by the user is recorded. If selected, every query is recorded, along with the export activity. The logs are viewable in the user account’s Usage tab (see below). Caution should be used when enabling this option, as it can result in large quantities of data being collected, slowing the system down.
Custom Actions: These are special actions the user can access from the Analytics grid, relevant to the CRM and Rebates modules.
The Profile tab contains the user permissions. This is where you control what the user can do in Phocas, from a functionality perspective.
The first thing to do is select a profile from the dropdown list. This determines whether permissions are automatically applied to the user or you apply them. You can select one of the pre-defined system (shared) profiles: Viewer, Basic, Advanced, and Administrator, or select the User Specific profile to create a profile specifically tailored for the user by selecting the required user permission checkboxes.
If the user has a Viewer license (set on the User tab), these settings are unavailable.
If you select the blank profile option, the user will have no functionality in Phocas. They can view favorites that are in the folders listed on the User tab and drill down on the resulting data, but they can't create new favorites or change modes within the existing ones.
This tab becomes available when the user has a CRM license.
Rules-based CRM user restrictions determine what CRM entities (accounts, contacts, leads, and activities) a CRM user can view or edit.
The basic principles of the CRM restrictions are:
You can always view and edit the entities you own. In the following image, you can see the default rule is Owner Equal To <User>, which means that the user (Bert) is restricted from viewing and editing all CRM entities except for those he owns.
If you have edit access to an account (or lead), you can edit the entities associated with that account. For example, if your restrictions allow you to edit an account (the parent), you can also edit that account's activities and contacts, and even the contact's activities (the children).
If you have view access to an account, you can view its entities and meetings (activities).
Campaigns can be viewed by all users, regardless of restrictions.
You can view and/or edit other CRM entities if you are linked to the owner of those entities via a restriction rule (as explained in the next section).
You can view meetings (activities) created against an account in your calendar. If you have , you can also view any .
You enable users to view and edit more CRM entities (not just the ones they own) by adding restriction rules that link them to those entities. There are two models for adding restriction rules.
Add specific users, groups, territories, and/or teams to a restriction rule, one at a time.
This model is suitable for small organizations that typically have a flat hierarchy or only a few users because:
When circumstances change, you need to update the restriction rule for each user manually.
It can be difficult to understand who can access what, as the Users page only lists each user’s group, territory, and team, not any others to which they have been linked via a restriction rule. You need to go into each user’s CRM Restrictions tab for such details.
Use the Group, Territory, and/or Team settings on the User tab to drive the restrictions. Add multiple groups, territories, and/or teams to the user’s maintenance form separated by a semicolon and select the …(as semicolon separated values) option in the rule.
This model is suitable for larger organizations that likely have a more complicated hierarchy because:
The set-and-forget approach reduces the need to manually update restrictions for each user.
On the Users page, it is easier to see at a glance who can access what, which is handy when you have hundreds of users.
Removing all restrictions gives the user full access to all the CRM entities. This action is suitable for administrators and users who require a broad level of access, as they typically need to view and edit all CRM entities.
Open the user’s maintenance form, click the CRM restrictions tab, select the No restriction checkbox, and click Save.
The user maintenance form contains some additional tabs not typically available to administrators, which are used by Phocas implementation and support consultants. These include Settings and Audit.
You can also assign a license to multiple users using the or on the Users page.
You can also assign a license to multiple users using the or on the Users page.
Folders: These are the that contain the favorites and dashboards the user can access. You can in the Administration > Folders page.
*Users can change these settings for themselves via their
Learn more about and how to customize them to meet your organization’s needs.
The permissions are organized into the categories. See the page for details on each one.
The Databases tab displays a list of the Phocas databases. This is where you control the data the user can access in Phocas. Even if a user has permission to do something in Phocas, such as view a favorite or dashboard, if that user does not have access to the underlying data, no data will display. See .
While you can assign users to teams, groups, and territories to help you with user management, these settings are also used in CRM restrictions to determine what CRM entities each user can view and edit. If you have connected with , these rules also affect what you can see in your activities calendar.
The Favorites tab displays a list of the favorites to which the user has access, which includes any personal favorites created by the user and the favorites shared with them. You can delete any of these favorites. See .
The Dashboards tab displays a list of the personal dashboards created by the user, if any. You can delete any of these dashboards. See .
The Usage tab displays activity information for the user. See .
The Query Logs tab displays details for each query the user makes. See .
