ProcessMaker 4.2
ProcessMaker API Documentation
ProcessMaker Examples
Deprecation Notices
Edit a User Account
Edit a user account.

Permissions Required

Your user account or group membership must have the following permissions to edit a user account unless your user account has the Make this user a Super Admin setting selected:
  • Users: Edit User
  • User: View Users
See the Users permissions or ask your Administrator for assistance.

Edit a ProcessMaker User Account

Follow these steps to edit a user account:
User Information

Edit General Information

Follow these steps to edit the following information in the Information tab about the person associated with the user account as necessary:
  1. 2.
    Locate the Profile section.
  2. 3.
    In the General Information section, change the following information:
    • In the First Name setting, edit the person's first name. This is a required setting.
    • In the Last Name setting, edit the person's last name. This is a required setting.
    • In the Job Title setting, edit the person's organizational job title.
  3. 4.
    In the Contact Information section, change the following information:
    • In the Email setting, edit the person's business email address. This is a required setting.
    • In the Phone setting, edit the person's business telephone number.
    • In the Fax setting, edit the person's business fax number.
    • In the Cell setting, edit the person's cell phone number.
  4. 5.
    In the Address section, change the following information:
    • From the Country drop-down menu, select the country for the person's business address.
    • In the Address setting, edit the person's business address.
    • In the City setting, edit the city for the person's business address.
    • From the State or Region drop-down menu, select the state, region, or province for the person's business address.
    • In the Postal Code setting, edit the person's business postal code.
  5. 7.
    Click Save.

Edit User Settings

Follow these steps to edit the following information in the Information tab about the person associated with the user account as necessary:
  1. 2.
    Locate the Settings section.
  2. 3.
    From the Date Format drop-down menu, select the format for how dates are displayed for this person from the following options:
    • m/d/Y (12/31/2017)
    • m/d/Y h:i A (12/31/2017 11:30 pm)
    • m/d/Y H:i (12/31/2017 23:30)
    • d/m/Y (31/12/2017)
    • d/m/Y h:i A (31/12/2017 11:30 pm)
    • d/m/Y H:i (31/12/2017 23:30)
    • Y/m/d (2017/12/31)
    • Y/m/d H:i (2017/12/31 23:30)
    • d.m.Y H:i (31.12.2017 23:30)
    • Y-m-d H:i (2017-12-31 23:30)
  3. 4.
    From the Time Zone drop-down menu, select the time zone in which to display times for this person. The default Time Zone setting value is America/Los_Angeles.
  4. 5.
    From the Language drop-down menu, select in which language to display ProcessMaker labels. Note that English-language is the default language and the only natural language provided without the Translations package. However, if the Translations package is installed, you may display the user interface labels and messages in German, Spanish, or French languages. Changing this profile setting only affects this user account.
    Optionally, select one of the following non-English languages if the Translations package is installed:
    • German: Select the de option.
    • Spanish: Select the es option.
    • French: Select the fr option.
  5. 6.
    From the Status drop-down menu, select the status of the user account from the following options:
    • Active: An Active user account is one in which a person can use it to log on to ProcessMaker.
    • Inactive: An Inactive user account is one in which a person cannot use it to log on to ProcessMaker.
    • Out of Office: An Out of Office user account is one in which that user's newly assigned Tasks automatically delegate to a specified user. Configure which user to delegate Tasks for this user from the Delegation setting below. Use this status for when this user is not generally available, such as when this user goes on leave. The Out of Office status becomes that user's status when viewing users in the organization. This status is available only if the Advanced User package is installed.
    • Scheduled: A Scheduled user account is one in which that user is scheduled to be available to work on assigned Tasks. If a Task is assigned a user not available, then that Task can be automatically delegated to a specified user. Configure which user to delegate Tasks for this user from the Delegation setting below. The Scheduled status becomes that user's status when viewing users in the organization. This status is available only if the Advanced User package is installed.
      Follow these steps to set when this user is scheduled to do Tasks:
      1. 1.
        Select the Scheduled option. A table displays of the days of the week, beginning with Sunday. Beside each day of the week, hours from which this user is available and not available to do Tasks display. Days that appear with a gray-colored background are those that this user are scheduled to do Tasks.
      2. 2.
        Configure each day of the week this user is scheduled to do Tasks:
        • Schedule the user to work that day: Select the day until it appears in a gray-colored background.
        • Do not schedule the user to work that day: Select the day until it appears in a white-colored background.
      3. 3.
        Configure hours for each day using 24-hour format that this user is scheduled to do Tasks:
        1. 1.
          Begin work hours: From the left-side hour for each day, select from which hour this user is scheduled to begin working on Tasks that day.
        2. 2.
          End work hours: From the right-side hour for each day, select from which hour this user is no longer scheduled to work on Tasks that day.
  6. 7.
    From the Delegation drop-down menu, select the user to delegate Tasks if this user is not available because of status or schedule. This setting is available only if the Advanced User package is installed.
  7. 8.
    From the Manager drop-down menu, select the manager for this user. Tasks that this user are assigned can be configured to escalate to the manager specified from this setting. If no user is selected, Tasks are assigned by default to the Process Manager. As a best practice, Process Designers should configure the Process Manager for each Process. This setting is available only if the Advanced User package is installed.
  8. 10.
    Click Save.

Edit the User Avatar

Follow these steps to edit the following information in the Information tab about the person associated with the user account as necessary:
  1. 2.
    Locate the Avatar section.
  2. 3.
    Do one of the following:
    • Upload an avatar: If there is no avatar image, the initials for that person's full name display. Click the Upload Avatar button. The Browse button displays. Continue to step 4.
    • Change an avatar: Select the Change button to upload a new avatar image. Continue to step 4.
    • Remove the current avatar: Click the Clear button. The initials for that person's full name display. Continue to step 7.
  3. 4.
    From the Upload Avatar screen, click the Browse button to locate the image to be your avatar.
  4. 5.
    Locate and then select the image to be your avatar. The image fits into the Upload Avatar screen.
  5. 6.
    Adjust the size of the image using the image size indicator
    to fit well inside the circle where the avatar displays, and then click Save. The avatar displays in the Avatar section.
  6. 8.
    Click Save to save the profile.

Edit the User Login Information

Usernames and passwords must adhere to the following protocol:
  • Aside from alphanumeric characters, ProcessMaker allows only the following characters in usernames:
    • commercial at (@)
    • hyphen (-)
    • period (.)
    • plus (+)
    • underscore (_)
  • Passwords must be at least eight (8) characters long, must contain at least one uppercase letter and a number or symbol. Password special characters are recommended.
Follow these steps to edit the following information in the Information tab about the person associated with the user account as necessary:
  1. 2.
    Locate the Login Information section.
  2. 3.
    In the Username setting, edit the username for the person's user account. Aside from alphanumeric characters, ProcessMaker allows only the following characters in usernames:
    • commercial at (@)
    • hyphen (-)
    • period (.)
    • plus (+)
    • underscore (_)
    This is a required setting.
  3. 4.
    In the New Password setting, edit the password to log on with the user account. Leave the New Password setting blank to keep the current password. Passwords must be at least eight (8) characters long, must contain at least one uppercase letter and a number or symbol. Password special characters are recommended. Password validation indicates how strong your password is and, at a minimum, it should meet the medium strength requirements described above.
  4. 5.
    In the Confirm Password setting, confirm that the password matches that entered into the New Password setting if a new password was entered. If you entered a new password, password validation indicates if the New Password and Confirm Password values do not match.
  5. 6.
    Enable the User must change password at next login toggle key to require this user to change the password prior to next logging on to ProcessMaker. When this toggle key is enabled, the following screen displays at that user's next log on:
    After the user changes the password, the toggle key disables again.
  6. 8.
    Click Save.

Configure the Home Page Dashboard, Redirect URL, and/or Menu

If the Dynamic UI package is installed, configure a custom home page and/or a menu for a user when that user logs on to ProcessMaker. A custom home page is either a dashboard that displays to the user or redirects that user to a specified URL. The redirected URL may be to an external site, such as to an organization's portal, or to a ProcessMaker location such as a specified Collection or Saved Search to which that user has access.
The custom home page and menu are configured separately.
The Dynamic UI package must be installed.
See the following home page configurations for the user account:

Select the Home Page Dashboard for the User

A dashboard displays important and relevant business management information (BMI) and key performance indicators (KPI) to specific business stakeholders when they need it. After the user logs on to ProcessMaker, the dashboard displays instead of the default ProcessMaker page.
The user does not experience the change until the next time that user logs on.
Follow these steps to select the dashboard for the user account's home page:
  1. 2.
    Locate the Dynamic UI section.
  2. 3.
    From the Home Page drop-down menu, select the My Dashboard option.
    The Dashboard setting displays.
  3. 4.
    From the Dashboard drop-down menu, select the dashboard as the home page for the user account.
  4. 6.
    Click Save.

Configure the Home Page to Redirect to a Destination for the User

Overview

Configure a custom home page for a user that redirects to a specified URL when that user next logs on. The redirected URL may be to an external site, such as to your organization's portal, or to a ProcessMaker location such as a specified Collection or Saved Search to which that user has access.
See the following sections for information to redirect to a Collection or Saved Search since both require unique conditions to configure properly:

Redirect to an External Site

Specify a URL that redirects a user to an external site such as to your organization's portal:
  1. 2.
    Locate the Dynamic UI section.
  2. 3.
    From the Home Page drop-down menu, select the URL Redirect option. The Redirect Url setting displays.
  3. 4.
    In the Redirect Url setting, enter the external site's URL to redirect to that location upon next log on.
  4. 6.
    Click Save.

Redirect to a ProcessMaker Collection

Specify a URL that redirects a user to a Collection when that user next logs on.
Ensure that the user has the following:
Otherwise, that user cannot access the Collection.
If a user cannot access a Collection, the following message displays instead of the Collection: Unauthorized.
Locate the Collection's URL prior to configuring this setting.
Follow these steps to configure the redirect URL to a Collection as the user account's home page:
  1. 2.
    Locate the Dynamic UI section.
  2. 3.
    From the Home Page drop-down menu, select the URL Redirect option. The Redirect Url setting displays.
  3. 4.
    In the Redirect Url setting, enter the Collection's URL to redirect to that Collection upon next log on.
  4. 6.
    Click Save.
Specify a URL that redirects a user to a Saved Search when that user next logs on.
Ensure that the user has been shared the Saved Search; otherwise, that user cannot access the Saved Search.
If a user cannot access a Saved Search, the following message displays instead of the Saved Search: Unauthorized.
Locate the Saved Search's URL prior to configuring this setting.
Follow these steps to configure the redirect URL to a Saved Search as the user account's home page:
  1. 2.
    Locate the Dynamic UI section.
  2. 3.
    From the Home Page drop-down menu, select the URL Redirect option. The Redirect Url setting displays.
  3. 4.
    In the Redirect Url setting, enter the Saved Search's URL to redirect to that Saved Search upon next log on.
  4. 6.
    Click Save.

Select the Menu for the User

A custom menu replaces the default top menu that displays in ProcessMaker.
The user does not experience the change until the next time that user logs on.
Follow these steps to select the menu for the user account's home page:
  1. 2.
    Locate the Dynamic UI section.
  2. 3.
    From the Top Menu drop-down menu, select the custom menu for the user account to replace the default top menu.
  3. 5.
    Click Save.

Edit to Which Groups the User is a Member

Specify to which group(s) the user is a member. Permissions are additive for the user: any permission(s) assigned to the group that user is a member also apply to that user.
As a best practice, do not assign the same user to multiple groups that contain distinct sets of permissions. For example, do not assign a user to a group in which its members have Requests category permissions and to another group assigned with all permissions; otherwise, that user has all permissions.
Follow these steps to edit the following information in the Groups tab about which group(s) this user account is a member as necessary:
  1. 2.
    Click the Groups tab. The Groups tab displays all groups created in your ProcessMaker instance. If no groups have been created, the following message displays: No Data Available. See Create a Group.
    The Groups tab displays the following information:
    • Name: The Name column displays the name of the group.
    • Description: The Description column displays the description of the group.
    • A toggle key represents whether the user is a member of that group.
  2. 3.
    Follow these guidelines to select group memberships for the user:
    • Select the toggle key for each group to which you want the user to be a member. When the toggle key is enabled for a group, that user becomes a member of that group. When the toggle key is disabled for a group, that user is not a member of that group.
    • Enter in the Search setting the text to filter groups by their name.
  3. 4.
    Click Save.

Edit User Permissions

Follow these steps to edit the following information in the Permissions tab about the person associated with the user account as necessary:
  1. 2.
    Click the Permissions tab. The Permissions tab displays permissions assigned to that user account.
  2. 3.
    In the Permissions tab, change which permissions from each permission category to assign that user account if necessary. Follow these guidelines to change permission assignments:
    • Super Admin: Assign the Make this user a Super Admin option to grant unrestricted access to the entire ProcessMaker instance. In doing so, ProcessMaker does not check permissions for user accounts with this setting selected, allowing such users to administer and install packages which might otherwise require permissions be granted to a user account to perform. Users whose account have this setting may do the following:
      • Start a Request for any Process regardless of whether any Process model grants such a user permission to do so.
      • View the Tasks as displayed in the Task column of Request summaries by clicking a link to that Task. Users that do not have the Make this user a Super Admin option do not have a hyperlink to Tasks from Request summaries.
    • Select the Assign all permissions to this user checkbox to assign all permissions to the user account.
    • Click on a permission category to expand the view of individual permissions within that category. Click on an expanded permission category to collapse that category. If you don't intend to assign this user account with any group(s), then assign permissions to this user account. Note that if this user account is assigned to any group(s), the permissions set in the group(s) take apply to those assigned to the user account. See Permission Descriptions for Users and Groups.
  3. 5.
    Click Save.

Manage API Tokens for the User

Use an API token with a user account to successfully make calls to our REST API from an external third-party application or a Script. For security purposes, the API token must not be expired for that API token to work.
A user must have a valid API token to successfully make calls to our RESTful API from an external third-party application.
Follow these steps to manage API tokens for a user account:
  1. 2.
    Click the API Tokens tab.
  2. 3.
    Manage the API tokens for the user account as necessary:

Generate an API Token

An API token is required to successfully make calls to our REST API from an external third-party application or a Script. For security purposes, the API token must not be expired for that API token to work. An API token is valid for one calendar year from its creation date.
To share the generated API token with the person to whom uses the user account requires copying the API token and the time that the API token generates. If you neglect to copy and share the generated API token at the time ProcessMaker generates it, there is no opportunity to view and copy it again; you must generate another API token.
Follow these steps to generate an API token that allows that user account:
  1. 2.
    Click the API Tokens tab.
    The API Tokens tab displays the following information about each generated API token:
    • ID: The ID column displays the automatically-generated ID for the API token.
    • Created At: The Created At column displays the date the API token was generated.
    • Expires At: The Expires At column displays the date the API token expires.
  2. 3.
    Click +Token. The New Token screen displays.
  3. 4.
    Click the Copy Token to Clipboard button.
  4. 5.
    Share the API token with the person to whom uses this user account. Ensure not to close the New Token screen until you do so.
  5. 6.
    Click Close. The API token displays in the API Tokens tab. Make note of when the API token automatically expires.
  6. 8.
    Click Save.

Delete an API Token

Delete an API token from a user account when that API token expires or to restrict that user from making calls to our REST API from an external third-party application or a Script.
Deleting a valid API token revokes the user holding the token from using an external third-party application from successfully making calls to our RESTful API. Deleting an API token cannot be undone.
Follow these steps to delete an API token:
  1. 2.
    Click the API Tokens tab.
  2. 3.
    Click the Delete icon
    for the API token to delete. A message displays to confirm deletion of the API token. The API token is referenced by its ID value.
  3. 4.
    Click Confirm.
  4. 6.
    Click Save.

View Security Logs for the User

For enhanced security and auditing purposes, ProcessMaker maintains a record of every log on and log off attempt by each user. Each user's account page contains a Security Logs tab that displays that user's successful/unsuccessful log on and log off attempts.
In addition to the other user permissions required to edit a user account, the Security Logs permission is required to view security logs.
Follow these steps to view security logs for a user:
  1. 2.
    Click on the Security Logs tab. The security logs display in a tabular format.
"Security Logs" tab displays the log on and log off events for a user
Each log entry contains the following information about that log event:
  • Event: The Event column displays the nature of the event. Possible values for this column include:
    • Login: This indicates a successful log on event.
    • Attempt: This indicates a failed log on event, indicating an incorrect password use.
    • Logout: This indicates a log off event. If the ProcessMaker instance is configured to only allow one device per user account be logged on to that ProcessMaker instance at a time, and another device logs on to an already logged on user account, that event is not recorded in the Security Logs tab because it is considered a session timeout. Session timeouts are not recorded.
  • IP Address: The IP Address column displays the IP address from which the log on or log off attempt occurred.
  • Browser: The Browser column displays the name of the web browser from which the log on or log off attempt occurred.
  • Operating System: The Operating System column displays the name of the operating system from which the log on or log off attempt occurred.
  • Occurred At: The Occurred At column displays the date and time at which the log on or log off attempt occurred.

Sort the Security Logs

For readability and ease of use, Security Logs are sorted to display the latest event first. This order is customizable and logs can be sorted based on any of the displayed columns.
In addition to the other user permissions required to edit a user account, the Security Logs permission is required to view security logs.
Follow these steps to sort security logs:
  1. 2.
    Click on the sort icons
    for a column to sort data in that column in ascending or descending order. See Control How Tabular Information Displays.

Search the Security Logs

Use the Search function to filter the security logs based on a certain criteria. For example, use an IP address in the Search field to see log on or log off attempts from that IP address only.
In addition to the other user permissions required to edit a user account, the Security Logs permission is required to view security logs.
Follow these steps to search security logs:
  1. 2.
    In the Search field, enter the text to search in any of the columns of the Security Logs. A filtered set of logs based on the search criteria displays.

Related Topics

Export as PDF
Copy link
Edit on GitHub
On this page
Permissions Required
Edit a ProcessMaker User Account
Edit General Information
Edit User Settings
Edit the User Avatar
Edit the User Login Information
Configure the Home Page Dashboard, Redirect URL, and/or Menu
Select the Home Page Dashboard for the User
Configure the Home Page to Redirect to a Destination for the User
Select the Menu for the User
Edit to Which Groups the User is a Member
Edit User Permissions
Manage API Tokens for the User
Generate an API Token
Delete an API Token
View Security Logs for the User
Sort the Security Logs
Search the Security Logs
Related Topics