Skip to main content

Manage users

Users are part of an organization. If you are a system administrator, you can manage users in the organization, including inviting users, removing users, and editing user permissions. This article describes the feature.

Introduction to Account Types

NineData provides two types of user accounts: General and SSO.

Comparison of Account Types

Operation
General
SSO
Regular login method✔️
SSO login method✔️
Personal Mode✔️
Organization Mode (non-SSO)✔️
SSO Organization Mode✔️
Switch organization✔️
Modify username and password✔️
One-click login✔️

Invite users

Prerequisites

  • Created or joined an organization. For more information, see Managing Organizations.
  • The NineData console is in regular organization (non-SSO) mode. To switch from personal mode to organization mode, see Switching to Organization.
  • Your role is Administrator. For more information, see Roles.

Steps

  1. Log in to NineData console.

  2. In the left navigation bar, click Account > Users.

    tip

    If Account is not found , verify that your console is in organization mode. About how to switch from personal mode to organization mode, see Switch to Organization.

  3. On the Users page, click Invite in the upper right corner.

  4. In the Invite dialog box, enter the email address of the member to be invited to the organization, select the role of the member after joining the organization, and click OK. One can also click Add to invite users in bulk.

    tip

    One can create a custom role. For more information, see Manage Roles.

  5. Click OK to complete the user invitation. At this point, NineData will send an invitation email to the user's email address, and the user can join the organization after accepting the invitation and completing the registration or login.

Add SSO Users

Prerequisites

  • SSO login is enabled for the current organization. For more information, see Enabling SSO login.
  • Your role is Administrator. For more information, see Roles.
  • The user's account must already be added in the identity provider (IdP) application, otherwise the user won't be able to log in. The account in the IdP application and the SSO username to be created are usually corresponding.

Procedure

See Creating an SSO User.

View User List

You can view all users within the current organization and disable/enable or remove users within the organization according to actual business needs, such as when members leave or resign.

Prerequisites

  • The NineData console is in organization mode. To switch from personal mode to organization mode, see Switch to Organization.
  • Your role is Administrator. For more information, see Roles.

Procedure

  1. Log in to NineData console.

  2. In the left navigation bar, click Account > User to view all users in the current organization.

    tip

    If Account is not found , verify that your console is in organization mode. About how to switch from personal mode to organization mode, see Switch to Organization.

  3. On the User page, you can disable/enable or remove users as needed.

    Disable/Enable

    Find the target user and turn on or off the switch in the Enabled column on the right side of the user. After disabling a user (turning off the switch), the user will not be able to enter the organization. The user will be restored after being re-enabled.

    Remove User

    Find the user you want to remove and click Remove in the Actions column on the right side of the user. In the pop-up confirmation window, click Remove.

    tip

    You can filter by role category by selecting it in the upper right corner of the page, or you can directly enter a username to search and quickly locate the target user.

Configuring User Access Limits

You can configure Query per day Max Times and Query per day Max Rows for all users within the organization. The configured query limits will apply to each individual user.

  1. Log in to the NineData Console.

  2. In the left navigation pane, click on Account and then User to view all users in the current organization.

    tip

    If you don't see Account, please ensure that your console is in organization mode. For information on how to switch from personal mode to organization mode, refer to Switching to Organization.

  3. On the User page, click on the setting02 icon to the right of User.

  4. In the popped-up dialog User Access Managerment, configure Query per day Max Times and Query per day Max Rows respectively. The configured counts and row numbers will apply to each user within the organization.

    tip

    The configured counts and row numbers are limits for a single day. If not fully utilized on that day, they will reset to zero and will not accumulate to the next day.

Edit User

For users within the organization, you can individually edit specific users. Editable fields include Login Name, Username, Query per day Max Times, and Query per day Max Rows.

Among these, Login Name and Username have different functions based on Account Type.

  • General: Modifying Login Name and Username will only change the displayed name in the NineData organization, with no other effects.
  • SSO:
    • Login Name: Allows changing the login name of SSO users. The new login name must match the complete username of the target user on the IdP provider side. After modification, users must first log in to the IdP provider with the new IdP login information and then smoothly log in to the NineData Console.
    • Username: Allows changing the displayed name of the target user within the NineData organization.

You can also configure Query per day Max Times and Query per day Max Rows individually for users:

  • Query per day Max Times: Configures the number of queries the current user can execute per day, defaulting to 2000 queries. The date on the right is the expiration date, meaning the user can execute 2000 queries daily until midnight on that date. Leave it blank for unlimited effectiveness.
  • Query per day Max Rows: Configures the total number of rows the current user can query per day, defaulting to 20000 rows. The date on the right is the expiration date, meaning the user can query 20000 rows daily until midnight on that date. Leave it blank for unlimited effectiveness.
tip
  • The configured Query per day Max Times and Query per day Max Rows for specific users take precedence over the global user access limits configuration.
  • After the configured Query per day Max Times and Query per day Max Rows expire for a specific user, the user needs to perform any SQL operation to refresh the quota data (switching to the global user access limits configuration).
  • The configured counts and row numbers are limits for a single day. If not fully utilized on that day, they will reset to zero and will not accumulate to the next day.

Prerequisites

  • NineData console is in organization mode. To switch from personal mode to organization mode, see Switch to Organization Mode.
  • Your role is Administrator. For more information, see Roles.

Procedure

  1. Log in to the NineData console.

  2. In the left navigation pane, click Account and then User to view all users in the current organization.

    tip

    If Account is not found, confirm that your console is in organization mode. To switch from personal mode to organization mode, see Switch to Organization Mode.

  3. In the user list on the User page, find the user you want to edit, and click Edit in the Actions column on the right side of the user.

    tip

    You can filter by role classification in the upper-right corner of the page, or directly search for the username to quickly locate the target user.

  4. Configure the user settings in the pop-up window, then click on OK.

Configuring User Permissions

Prerequisites

  • NineData console is in organization mode. For instructions on switching from personal mode to organization mode, see Switching to an Organization.
  • Your role is Administrator. For more information, see Roles.

Procedure

  1. Log in to the NineData console.

  2. In the left navigation pane, click Account > User to view all users in the current organization.

    tip

    If Account is not found, confirm that your console is in organization mode. For instructions on switching from personal mode to organization mode, see Switching to an Organization.

  3. In the user list on the User page, click Authority in the Actions column on the right side of the target user to configure user permissions in the pop-up window of Authority.

    Authority has three sections: Application, Role Grant, and User Grant.

    • Application: Shows all permissions that the user has applied for by submitting permission application tickets, which are divided into three sections: Datasource, Database, and Sensitive Column. You can click the Revoke button on the right side of the target permission to revoke the user's applied permission according to business needs.
    • Role Grant: Shows the roles that the user has been bound to, and the corresponding permissions for each role. You can click Edit Grant to bind a new role for the user or unbind an existing role.
    • User Grant: Shows the individual permissions that have been granted to the user. Individual permissions and other permissions that the user has (Application, Role Grant) are complementary and have no priority. You can grant or revoke individual permissions for the user by turning the slider on the right side of the target permission.
    tip

    For more information on permissions, see Permissions.

  4. Click Save Changes.

Last updated on