User Guides

User and Group Management

7min

Hexiosec ASM provides two levels of user management, Organisation Roles and Group Roles:

  • Organisation Roles: what a user can do within your organisation
  • Group Roles: what a user can do within a specific group

See Organisation and Group Roles for more information on the roles available.

New Users

You can add a new user to your organisation via the three dots at the top of the scan page.

Three dots highlighted on top right of the organisation pane
Organisation Management


When new users join your organisation, the Organisation Owner or someone with the Admin role will need to set the new user's roles for the organisation, including any scan group you would like them to access. If you are not sure which roles they should have at the organisation or scan group level, the links on the invite page will pop-up a reminder.

It is a good idea to add them directly to an existing group of scans, this allows them access to the scans as soon as they accept their invite. You also have the option of creating a new group to add them to, you will automatically be added as the administrator of that group. They will only be able to see the scans in the scan groups that they are added to.

It is recommended that the new user is guided to use multi-factor authentication (MFA) once their account has been set up, guidance is available for MFA and session expiry.

Managing Organisation and Group roles

If you would like to manage organisation and group roles for all users, this can be done from the Users page for an organisation. On the Users page you can search for users and manage their organisation role (the edit icon), or the groups they can access (the people icon). The user can also be deleted from the organisation if they no longer need access.

Role shown alongside the count of scan groups, followed by icons for edit user, edit group, and delete user
Managing users and roles


Remember to delete users when they leave your organisation.

When managing a user's groups, you will be presented with a new window where groups can be added or removed and group permissions amended.

Shows groups in a dropdown box, alongside the group role. Buttons also allow user to be added to an eisting group or a new group
Amend user groups and group roles


Managing Group roles

Groups roles can be managed from the settings (the cog icon) for a specific scan group.

Ad Hoc Scans scan group shown with the cog highlighted and 'Ad Hoc Scans settings' pop-up label
Scan Group Management


'Manage users of this group' will take you to the Users page described in the section above, where you can manage the groups roles for each user. Note that the scan group can also be renamed here, or deleted.

When creating a new group within Hexiosec ASM, you will need to use the Users management page to add users to that group before they can see it. You will be automatically added as an administrator.

Managing Groups for multiple users

If you want to manage the groups for multiple users, this can also be done from an Organisation's Users page. Use the checkboxes to select the users you would like to add or remove from a group. At the top of the page you will then be able to select to edit these users to 'Manage Groups'.

To be able to add or remove multiple users from groups, they must either, all not be in the group (for adding), or all be in the group (for removing)

If you need to give some users separate permissions, such as one person being an admin for the group, then they will need to be added to that group individually.

Updated 01 Oct 2024
PREVIOUS
User Guides
NEXT
Organisation and Group Roles
Docs powered by Archbee