User Management

Purpose

This document describes the procedure to manage users in the portal.

Introduction

IAM (Identify and Access management) is the portal’s user management page that control access to resources. IAM is used to control who is authenticated (signed in) and authorized (has permissions) to use resources.
In IAM under the Users tab you can add new users and edit existing ones. For a user to have access within the portal they need to be assigned a Role and a Resource group. In the Roles tab there are some baseline roles pre-configured by Outpost24, these can not be edited but custom roles can be created by pressing + Add role in the bottom right corner. The Resource group has by default only All resources pre-configured which cannot be edited, If you would like to specify what assets and access the user should have, you need to add new groups.

Role-Based Access Control

IAM uses Role-Based Access Control (RBAC) to restrict access depending on a user's role within the system. The roles in RBAC refer to the levels of access that users have to resources on the network. RBAC is a method of regulating access to system resources based on the roles of individual users within the organization. Access is granted on a need-to-know basis.

User Management in IAM

To navigate to this section,

Log in to OUTSCAN / HIAB.
Go to Main Menu > Portal.
Click the Account icon in the upper right corner.
Select the IAM card to access the IAM page.

This displays the Identity Access Management page which is divided in three tabs, Users, Roles, and Resource Groups.

Add a User

To add a user:

Click the green +Add user button on the lower right corner.
Fill in the required user details.
^{*) Required}
Click the blue ADD button to finish adding the user.

Edit User

To edit a user

Click the edit icon on the user you want to edit.
Update the required details.
Click the blue Update button to save and confirm the update.

Password Recovery

To change a password on a user

Click the edit icon on the user you want to edit.
Click the Password tab.
Click the blue Send button to send a password recovery e-mail to the user.

Delete User

To remove a user:

Click the Delete icon on the user you want to remove.
Click the red DELETE button to confirm.

Assign a Role to a User

To assign a role to a user,

Click on the assign roles icon displayed on the bottom bar.
Select the required roles and click ASSIGN.
The newly assigned roles are shown under the USERS view.

Assign a Resource Group to a User

To assign a resource group to a user,

Click on the assign resource groups icon displayed on the bottom bar.
Select the required resource groups and click ASSIGN.
The newly assigned resource groups are shown under the USERS view.

OUTSCAN Super Users and Sub Users in the Portal

If a Super user or Sub user is created in OUTSCAN, they cannot access configurations and other tabs in the Appsec portal. In the new UI and Rest API there is no concept of superuser. If a user should have access to everything they must be granted the default role Admin and default resource group All Resources or some other custom roles/resource groups giving them the equivalent access rights. By default, all users that are create have no roles or resource groups set. and need IAM roles/resource groups granted to access things.

To use the portal, follow the information below:

Log in to OUTSCAN / HIAB with a main user.
Go to Main Menu > Portal.
Click the Account icon in the upper right corner.
Select IAM (Identity Access Management).
Select the user which you need access granted.
Select the role as Admin and resource group as All Resources.