# Users Groups

The ***Groups*** and ***Users*** menu's, allow you to configure *Role Based Access* and Account level permissions. ***Groups*** are created to define custom restrictive roles, that can be associated to users that must have access to only certain parts of the *Glass* interface. ***Users*** are created to provide login credentials for other users of the Exivity system. A user can be associated to a single *Group*, and can have access to all accounts or to a subset of accounts.

## Creating Groups

To create a custom group with limited access to the Exivity *Glass* user interface, follow this procedure:

![Creating Groups](https://2831153169-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-LHEKskLK6aXinV75Knl%2F-LHF0G1lYWN8xZtENgii%2F-LHF0TmUoYOZpzygz3CE%2Fcreate_group.gif?generation=1531424667677320\&alt=media)

1. Go to '*Administration*' > '*Groups*', then click '*Add Group*'
2. Provide a meaningful *Name* for this *Group*
3. Select one or multiple permissions from the custom list of '*Role Names*' below
4. When you're done with your selection, click the '*Save*' button to create your group. Now you can create ***Users*** and associate them to this group.

   5\.

| Role Name                | Description                                                                                                                                           |
| ------------------------ | ----------------------------------------------------------------------------------------------------------------------------------------------------- |
| **View Reports**         | Provides access to all elements of the *Reports* menu                                                                                                 |
| **View Cogs**            | Enabling this option, provides access to the *Cost of Goods* rates and charges                                                                        |
| **View Logs**            | Provides access to the *Administration* > *Log Viewer*                                                                                                |
| **View Audit**           | Provides access to the *Administration* > *Audit Trial*                                                                                               |
| **Manage reports**       | Allows the creation and deletion of *Report Definitions*                                                                                              |
| **Manage accounts**      | Provides access to the *Accounts* menu section                                                                                                        |
| **Manage catalogue**     | Enables read and write access to the entire *Catalogue* menu. This includes adding and changing of *Rates* and *Adjustments*                          |
| **Manage data sources**  | Allows to create, edit and delete *Extractors* and *Transformers*                                                                                     |
| **Manage users**         | Allows to create, edit and delete all internal users and Groups                                                                                       |
| **Manage configuration** | Allows editing of all elements in the *Administration* > *Configuration* menu                                                                         |
| **Manage system**        | Provides access to the  *Administration* > *System Info* menu. This includes updating of the installed license file.                                  |
| **Upload files**         | Allows to upload usage and lookup data through the Exivity API (see [api.exivity.com](https://api.exivity.com/#7d48bdde-6981-8dd1-7e2f-510d938ad22f)) |

## Creating Users

To create a ***User*** that will only have access to a certain account or a selection of several accounts, use the following procedure to create a user with special account level permissions:

![Creating Users](https://2831153169-files.gitbook.io/~/files/v0/b/gitbook-legacy-files/o/assets%2F-LHEKskLK6aXinV75Knl%2F-LHF0G1lYWN8xZtENgii%2F-LHF0TmfUq79Jxg6CaPn%2Fcreate_user.gif?generation=1531424669882219\&alt=media)

1. Go to '*Administration*' > '*Users*', then click '*Add User*'
2. Provide a login name in the '*Username*' field, a valid '*E-mail*' address, and a '*Password*' of at least 8 characters
3. From the '*Group*' dropdown box, select the '*Group*' you want to associate to this users
4. Next, click the '*Account Access*' tab, and select the '*Access Type*' for this user:
   * **Grant access to all accounts** - *to provide access to any of the available accounts in the system*
   * **Grant access to only specific accounts** - *to only provide access to usage and charge data of specific accounts*
5. If you've selected **Grant access to only specific accounts**, then select from the *Account Access* list, each *Account Name* where this user should have access for. You may select a top level account, or an account further down in the hierarchy. Account inheritance is applicable, meaning lower level accounts are automatically included when selecting a top level account. If there are multiple **Report Definitions**, select the corresponding **Definition** from the drop down list first, before selecting any accounts.
6. When all fields have been filled in, you may create the user by clicking the '*Save*' button.