|Applies To||Product Set: Archer |
Product/Service Type: Archer (On-Premise)/ Archer (SaaS/Hosted)
Platform: Windows Server 2012 R2/ Windows Server 2016/ Windows Server 2019
|Issue||The purpose of this article is to explain how to add a username to manage access control in Archer without giving the username the "System Administrator" access. |
Situations, where you may need to manage users/groups, include:
- Create/delete/edit local Archer usernames
- Resetting the password for local Archer usernames
- Add/delete/edit role
- Add/delete/editing local groups
- Add/remove Security group
- Add/delete/edit LDAP Configuration
- Run Access Control Reports (it includes a summary of the access control rights, report lists all failed login attempts…etc.)
- View Application Builder Reports.
|Resolution||Archer comes with a role called "Access Control Administrator", and this is an out of box role can be used to manage access control. To accomplish this task|
- Login to Archer user interface > Administration > Access Control > Users
- Then go to Username > Roles tab > click Lockup > under find type in "Access Control Administrator" > select the "Access Control Administrator" > ok
- Then click > Save.
- Verification. Login to Archer user interface and ensure that the username is only able to manage access control.