All Products
Search

This Product

    Dataphin:Managing Dataphin members

    Document Center

    Dataphin:Managing Dataphin members

    Last Updated:Jan 24, 2025

    Once members have been added to Dataphin, you can manage their accounts by performing actions such as deletion, disabling, or permission reassignment. This topic describes the procedures for managing Dataphin members.

    Permission description

    • Super administrators and system administrators have the authority to disable members, delete accounts, reassign permissions, and update contact details for all members.

    • System administrators do not have the ability to disable or delete super administrators, nor can they reassign permissions of super administrators or other system administrators.

    Managing Dataphin members

    1. Navigate to the Dataphin home page, select Management Center > Member Management from the top menu bar. You will be taken to the Member Management page by default.

    2. (Optional) On the Member Management page, you can filter the list to find specific members. Search options include username, user ID, or filters for abnormal accounts, member roles, and statuses.

      Abnormal accounts: The system performs an automatic refresh every day at midnight to identify accounts that have been removed from the source system and marks them with an image.png icon.

    3. On the Member Management page, you can edit member details, disable accounts, reinstate members, or reassign permissions. The table below details these operations and their respective processes.

      Operation

      Description

      Edit

      You can modify the User Role and contact information (such as email, phone, DingTalk group robot, etc.) of a user. Contact information must be added for members to receive alert information in a timely manner. For more information, see Editing member account information.

      • Single edit:

        1. Click the Actions icon in the target member's column.image

        2. In the Edit Account dialog box, modify the User Role and contact information. After completing the modifications, click Confirm.

      • Batch edit:

        1. Select multiple members in the member list or select Select All On This Page at the bottom of the page, and then click Edit at the bottom of the page.

        2. In the Batch Edit dialog box, edit the information of multiple members. After completing the modifications, click Confirm.

      Note

      After modifying the contact information, to prevent delays in message notifications, you can promptly sync the relevant personnel to ensure timely acceptance of alert information.

      Disable

      Support disabling an enabled account. After disabling, Dataphin will prohibit the user from logging on, and the user will not receive monitoring alert messages. It is recommended that you first change owner of the assets under the account to be disabled.

      • Disable a single account: Click the ActionsimageDeactivate Account Confirm icon in the column of the target member. In the dialog box, click .

      • Batch disable:

        1. Select multiple members in the member list or select Select All On This Page at the bottom of the page, and click Disable at the bottom of the page.

        2. In the Batch Disable dialog box, click OK.

      Enable

      Supports enabling accounts that have been disabled. After a user account is enabled, Dataphin will resume the user's logon, and the user will receive monitoring alert messages.

      • Click Enable: Click the Actions column of the target member's image icon. In the Enable Account dialog box, click OK.

      • Batch enable:

        1. Select multiple members in the member list or select Select All On This Page at the bottom of the page, and click Enable at the bottom of the page.

        2. In the Batch Enable dialog box, click OK.

      Change owner permission

      When there is a change in users in Dataphin, you can quickly change the owner permission. The user will no longer have the original permissions. Be sure to change the owner as needed. For more information, see change owner permission.

      1. Click the Actionsimage icon in the column of the target member.

      2. In the Change Owner Permission dialog box, select the Recipient and fill in the Transfer Description. After completion, click OK.

      Add to user group

      Add one or more users to a specified user group. Each user group can contain up to 1000 members.

      • Add individually:

        1. Click the Actions icon in the column of the target member, and select image.pngAdd To User Group.

        2. In the Add To User Group dialog box, select User Group. After completing the selection, click OK.

      • Add in batch:

        1. Select multiple members in the member list or select Select All On This Page at the bottom of the page, and then click Add To User Group at the bottom of the page.

        2. In the Add To User Group dialog box, select User Group. After completing the selection, click OK.

      Disable

      Delete redundant or unnecessary members. After a member is deleted, Dataphin will prohibit the user from logging on, and the user will not be able to receive monitoring alert messages. It is recommended to change the owner of the assets under the account of the user to be deleted before deletion. When Dataphin is integrated with other authentication systems, deleting a member only removes the user from the Dataphin member list and does not directly delete the user from the integrated authentication system.

      • Single deletion:

        1. Click the Actions-Delete icon in the column of the target member, and select .

        2. In the Delete Account dialog box, click OK.

      • Batch delete:

        1. Select multiple members in the member list or select Select All On This Page at the bottom of the page, and click Delete at the bottom of the page.

        2. In the Delete Account dialog box, click OK.

    Edit member account information

    1. On the Member Management page, click the icon in the operation column next to the desired member to open the Edit Account dialog box.

    2. In the Edit Account dialog box, you can update the user's roles, IP whitelist, email, phone number, and other contact details. The table below provides descriptions for each parameter:

      Parameter

      Description

      User Role

      You can modify the user's global role or add global roles for the member. Multiple roles are supported. For more information about global roles, see User roles and permissions.

      Important

      The super administrator account has most system permissions. The Super Administrator Role cannot be deleted. However, other roles, such as quality administrator or security administrator, can be added to grant relevant feature permissions.

      Email

      Enter a valid email address in the correct format, such as username@example.com.

      Phone

      Select the country code and enter the phone number. The country code can be searched using keywords.

      Dingtalk Robot, Lark Robot, Wecom Robot

      Enter the webhook address of the DingTalk group robot, Lark group robot, or WeCom group robot. For specific configuration methods, see Add DingTalk group robot contact for a member, Add Lark group robot contact for a member, Add WeCom group robot contact for a member.

      IP Whitelist

      After setting the IP whitelist, users can only log on from the configured IP addresses. This feature is disabled by default. Once enabled, it takes effect immediately. The IP whitelist configuration information is as follows:

      • Specify IP address: For example, 192.168.0.1 allows access from the IP address 192.168.0.1.

      • Specify IP segment: For example, 192.168.0.0/24 allows access from IP addresses ranging from 192.168.0.1 to 192.168.0.255, or 192.168.0.0-192.168.0.255.

      • Multiple IP settings: Displayed with line breaks.

      Note

      • The whitelist applies to users and intercepts logons across different tenants.

      • If the whitelist is enabled but configured incorrectly, no IP segment will be allowed to log on.

      • Once set, it takes effect immediately. Logged-on users will be intercepted when refreshing or opening a new page.

      • When enabling this feature, confirm the network topology with Dataphin O&M personnel and register the IP addresses of network widgets between the user terminal and the Dataphin server. Otherwise, the IP address of the end user cannot be retrieved.

      • If the end user uses technologies such as VPN or virtual desktop, Dataphin can only detect the IP address forwarded through the VPN or virtual desktop.

    Change owner

    Note

    Superusers and system administrators can access the Change Owner Permission and Owner Change Record interfaces through the Management Center. Regular members can only access these features through the Personal Center. The functionality is consistent across both access points. The example below is based on the Member Management page.

    Change owner permission

    1. On the Member Management page, click the ActionsimageChange Owner Permission icon in the operation column for the selected member to open the dialog box.

    2. In the Change Owner Permission dialog box, select the Recipient and provide a Change Description. Click OK when finished.

      • Recipient: Choose the recipient. For regular members, changing permissions will trigger an approval task for the recipient.

      • Change Description: It is advisable to provide a relevant description for the permission change, not exceeding 128 characters.

    View owner change record

    Superusers and system administrators can review all historical change records. Regular members are limited to viewing records where they are the creator, the person transferring out, or the recipient.

    On the Member Management page, click the Owner Change Record image.png icon in the indicated area of the image to view historical change records. The functionality under the My and All tabs is the same. The image below uses the My tab as an example.

    image

    Area

    Description

    Filter and search area

    • Not Successfully Changed: Filter records that have not been successfully changed for the current account.

    • Search: You can enter the name of the task in the search box for quick search.

    • Filter: You can filter precisely by Created By, Transfer-out Person, Recipient, and Change Status.

    • Change Owner Permission: You can change owner permission. For more information, see change owner permission.

    List area

    Displays information on Change Tasks, Created By, Transfer-out Person, Recipient, Created At, and Change Status. You can also perform View Details, View Approval Tasks, and Resubmit operations under the Actions column.

    • View Details: You can view detailed information about the change permission.

      • When the change status is successful, you can view the details of sub-feature changes, including change module, change sub-feature, sub-feature permission, and change status.

      • When the change status is failed, you can view the details of sub-feature changes, including change module, change sub-feature, sub-feature permission, and change status. You can also click the image..png icon after the change failed to view the reason for the change failure.

    • View Approval Tasks: You can view the details of approval tasks in the Task Center.

    • Resubmit: When the permission change fails or is rejected, you can resubmit.