OK… so you’ve installed the SAManage agents and created your sites and departments and rules and stuff… it’s time to kick your ITAM Rollout Plan up a notch and give your users access to the SAManage IT Asset Management solution. SAManage allows you to manage your users and specify who has access to the system and how much access they can get.
Adding new users
The most basic way to add users into the system is using the application itself; using the “Setup → Users” screen, you can create a user by entering the basic attributes (Name, email address, phone number, etc); you can also assign that user to a particular site and department, as well as designate that user’s direct manager (who she reports to). Finally you need to designate the role the user will have in the system; a user can have one of the following roles:
- Portal User: This role has least amount of privileges in the system. They can only log-in to SAManage End-User Portal, which gives them access to their own tickets and service requests as well as the corporate Solutions repository;
- User: This role allows the user access to all parts of the system (inventory, contracts, service desk, etc.). The only limit on this role is that it does enable access to the Setup areas, i.e. this role cannot modify your application configuration;
- Administrator: Users with this role have unfettered to the entire application.
Once you’ve created a new user, that user will automatically be notified via email that she now has access to SAManage. This email will guide the user to the SAManage web-site and allows her to set a password.
This process is useful for one-off user creation, like when a new Service Desk technician joins your group and needs access to service desk tickets. If you need to give access to a larger number of users, SAManage facilitates this by several methods of automation:
EMail to the Service Desk
When a new user sends an email to your Service Desk dropbox, a new Portal User is created for that user and an email is sent back to the user introducing them to the system and asking them to set their password. By using this method, you can delegate the creation to the end-users; you can then go in and add information about the user at a later time.
SAManage supports SSO through an OAuth server and/or using Google Apps SSO. When a user first logs in to the SAManage application using one of these methods, a new Portal User is created for him.
LDAP and Active Directory Import
We have recently released an enhancement that allows you to import and maintain your Users by tying into your LDAP Directory (or Active Directory). Once you perform a simple one-time configuration process, this utility will analyze your User’s list in LDAP or AD and make sure the SAManage Users list stays in sync with that directory.
User import via the API
The SAManage API is comprehensive library of interfaces that allow you to manipulate many objects in the SAManage universe. One of the entry points is a complete set of User functions which would allow you (with some simple programming) to create your own User import process. Stay tuned to this blog, we will be publishing an API how-to in the near future.
And a last but not least, a teaser
In the next several weeks, we will be releasing some significant additions to the entire User Roles functionality, which will allow us to offer fine-grained access control down to the site and department level as well as read-only capabilities, just to name a few… Again, stay tuned to this channel for updates.