User Management with OneIdP

The usage of OneIdP is widely recognized in the management and generation of user accounts. This document provides a detailed explanation of the user management procedures using OneIdP.

Pre-requisite

1. Directory should be set up on Scalefusion Dashboard from OneDirectory.

Add User(s)

Users can be added to OneIdP directory from two places on Scalefusion Dashboard:

1. OneDirectory: Click on Add User icon in front of the directory in which you want to add user
2. User Enrollment: Add a user from User Enrollment (Enrollment Configurations > User Enrollment)

Add Users from OneDirectory

1. Click on Add Users icon in front of the directory name
   
2. This will bring up the Add User dialog box. Enter the following:
   1. Username: This will be pre-filled with the account details with which you sign in on Dashboard. You can change this
   2. Email:Enter the email. The email address will be appended with the directory name you have created. You don't need to enter @ character while adding email.
      1. Add user to OneIdP: Enabling this will migrate a custom domain user to OneIdP directory. This checkbox will be disabled for a default domain (*.oneidp)
   3. Password: Provide a password which will be used to sign in on the device
   4. Enter other required details and click Add
      

Add Users from User Enrollment

1. On Scalefusion Dashboard, navigate to Enrollment Configurations > User Enrollment
2. Click on Add a User button
   
3. This will bring up the Add User dialog box. Enter the following:
   1. Username: This will be pre-filled with the account details with which you sign in on Dashboard. You can change this
   2. Email: Enter the email. In the drop-down next to email, choose oneidp / custom domain you have configured in OneDirectory. The email address will be appended with the directory name you have created.
      
      For onedirectory domain, you don't need to enter @ character while adding email. It will get automatically added.
      1. Add user to OneIdP: Enabling this will migrate a custom domain user to OneIdP directory. This checkbox will be disabled for a default domain (*.oneidp) and Other user.
   3. Password: Provide a password which will be used to sign in on the device. If it's a user belonging to custom domain, password is not required as it is set from respective domain.
   4. Enter other required details and click Add
4. The user will be created and displayed in list of users.
   
   Users created with OneIdP (default domain) will be indicated with a oneidp logo next to email.
   

Actions on OneIdP users

Following actions can be performed on OneIdP users:

1. Delete User: Deletes the user from User Management
2. View Devices: View the devices enrolled with the user
3. Edit Details: Edit user details. Email and password cannot be edited from here.
4. Reset Password: Resets the password of a OneIdP user. On resetting the password, the users will not be logged out from their managed devices. When they login next, they will be required to enter the new password. Clicking on the key icon brings up Reset password dialog box. Enter the new password and click Reset password button.
   

The next documents explain the enrollment of devices and how users (created via OneidP) are authenticated in the process.