Defining Personify360 Users

A Personify360 user is an individual who accesses Personify360 by entering their unique credentials. From the User Maintenance (PSM001) screen, once you create a user, you can add the user to organization units, security groups, and personas.

Security groups must be defined before you begin. For more information, please see Defining Security Groups.

When users log in to Personify360, the default password is the same as the User ID.

Permission changes can be made while the user is in the application, but the changes will not take effect until the user logs out and logs back in to Personify360.

From the User Maintenance screen, you can perform the following using the task bar:

·            Reset password

·            Import permissions to other users

·            Review assigned applications and access points

·            Show login history

Only a Super User can create or edit another Super User.

To define users:

1.    From the Security Central screen, click Define User.

2.    Click Create New Standard User.
The User Maintenance screen displays, as shown below.

3.    Enter the User ID.

The User ID field does not accept any special characters. Any special characters entered in this field will be automatically changed to an underscore "_".

4.    Enter the User Name.

5.    Click the Managed By link to select the user's manager.

6.    From the Managed Users section, select the user in which the new user is responsible for managing.
Double-click a user in this section to open that user's record in User Maintenance.

7.    If necessary, click the Primary Search Group link and search for a Primary Search Group to link to a user.

8.    Select the Language from the drop-down.
Values are populated based on the options defined on the Language Maintenance screen.

9.    If necessary, select the Account Expiration Date.

10.  Enter the user’s information as needed. The options include:

·            Email

·            Reply to Email

·            FAX

·            Name on FAX

11.  If necessary, click the Customer link and search for a customer to link to a user.

12.  In the User Options section, check the appropriate checkboxes:

·            Is User Active?

·            Is Super User?

·            Require Password Change?

·            Is User Locked?

·            Is Network Account

·            Is Administrator?

·           Contact Tracking Staff

·            Allow Email Alert?

·            Auto Create Batch

13.  The Assigned Organizations tab displays a list of the organizations and organization units to which you can assign the users. To assign the user permissions to organization unit, perform the following:

a.    Access the Assigned Organizations tab, as shown below.

b.    Click the + next to the appropriate organization to expand it.

c.    Double-click the organization unit to which you want to add the user.
The red X changes to a green checkmark.

d.    To assign the user access to ALL organizations and organization units, click the Select All link.
Similarly, click the Unselect All link to remove access to all organization and organization units.

e.    If you have multiple organizations, you can make one the default. To do this, highlight the organization unit you want to make the default for this user, double-click it so a green checkmark displays next to it, and click the Make Default link.
The default organization unit displays in bold.

f.      Click Save.

14.  On the Assigned Security Groups tab, you will see a list of active security groups for the organization units selected in step 9. To assign the user to a security group(s), perform the following:

a.    Access the Assigned Security Groups tab, as shown below.

b.    Click the + next to the appropriate security group to expand it.

c.    Double-click the security group you want to set for the user.
The red X changes to a green checkmark.

Security groups that start with an underscore (e.g., _ACCT_MGR (_Accounting Manager)) provide access across the subsystem. Security groups that begin with the subsystem acronym (e.g., FAR_FULL (FARAccounting - Full Control)) provide access to the level identified.

d.    To assigned the user access to ALL security groups, click the Select All link.
Similarly, click the Unselect All link to remove access to all security groups.

e.    Click Save.

15.  On the Assigned Personas tab, you will see a list of personas. To assign the user a persona, perform the following:

a.    Access the Assigned Personas tab, as shown below.

b.    Click the + next to the appropriate persona to expand it. Double-click the persona you want to set for the user.
The red X changes to a green checkmark. Users can only use one persona at a time, but they can change the persona within the application without logging out.

c.    If you assign multiple personas to the sure, you can make one the default. To do this, highlight the persona you want to make the default for this user, double-click it so a green checkmark displays next to it, and click the Make Default link.
The default persona unit displays in bold.

To assigned the user access to ALL personas, click the Select All link.

16.  Click Save.
The Generate Password screen displays where you can set the first login password, as shown below.

17.  Click OK.
An email opens in your default email provider with an attachment containing an image of the user's password. If you defined an email address for the user, the To field defaults to the defined email address of the user.

Screen Element

Description

User ID

Text box. A unique ID for the user. This ID is used when signing into Personify360. As of the 7.2.3 release, this field defaults based on the first character of the user’s first name and up to 19 characters of the user’s last name.

User Name

Text box. The long name or description of the User ID.

Managed By

Link. As of 7.4.1, when clicked, opens the Generic Chooser to select the user who manages the new user.

Managed Users

Selection box. As of 7.4.1, a list of users that be selected as users managed by the new user.

Language

Drop-down. The language used for this User ID inside the application. The screen captions and messages will display in this language.

Account Expiration Date

Drop-down. You can set a user account expiration date so users cannot access their account after a specific date. This functionality exists for cases where organizations hire temps that should only need access for a given amount of time. The user can no longer log in after this date.

Email

Text box. The email address of the user. It is used in the Contact Tracking module to send an email to this user.

Reply To Email

Text box. The email address to which the user wants reply emails to be sent.

Fax

Text box. The fax number of the user. It is used in the Contact Tracking module to send an email to this user.

Name on Fax

Text box. The name that appears on the fax when it is sent from the fax number.

Account Expiration Date

Drop-down. The date on which the user’s account expires (if any). The user cannot log in to this account after the expiration date. Accounts with expiration dates are typically created when an association hires a temp or conducts training.

Customer

Link. When clicked, the Customer Chooser displays where you can select an individual customer to link to a user so that the application recognizes the user as a fundraising solicitor or sales person.

Primary Search Group

Link. When clicked, the Primary Search Group Chooser displays where you can select the primary search group (subgroup that is typically a chapter) to be used in searches for the user. To delete the Primary Search Group selected here, right-click the group name and select Clear. For more information on primary search groups, please see Creating a Primary Search Group Mapping.

User Options

Is User Active?

Checkbox. When checked, indicates the user is active. Inactivating a user means the user will not be able to log into Personify360. Before you inactivate a user, make sure they are not assigned to any open or private contact tracking records or that the user doesn't own any public Quick Pick items with no expiration date.

 

As a matter of best practice, you should also re-assign another staff member if the staff member being inactivated is a current segment manager, defined as a manager of other back office users, or defined as a staff person on a current or future Abstracts Call Submission Type.

 

Staff can also be assigned as the point of contact for fundraising planned giving plan, but if the staff being inactivated was the person who worked with the donor to secure the planned giving commitment, it would be appropriate to leave that staff person assigned to the planned giving plan.  

Require Password Change?

Checkbox. When checked, indicates the user must change the password upon logging in to Personify360. The password is no longer set to the same as the User ID. Instead, it is generated as an encrypted password that complies with RegEx standards. See Resetting a User’s Password for more information.

Is Network Account?

Read-only checkbox. When checked, indicates the user account is the network account, and the Active Directory is enabled. See Enabling Active Directory for more information.

If the user's network password CANNOT contain a pipe ( | ) character. The system will display a message that the network credentials are incorrect if so.

Is Super User?

Checkbox. When checked, indicates that the user is a super user. A super user can view all screens in all personas, regardless of other security groups. However, if organization unit segmentation is defined, those segmentation rules still apply to the super user. Typically, this checkbox is unchecked because it allows the user to bypass screen and menu security. Only super users can create other super users on this screen.

Is User Locked?

Checkbox. When checked, indicates the user is locked out of his or her workstation. The system limits repeated access attempts by locking out the user ID after six attempts. If this occurs, the user can try to log in again in 30 minutes, or the administrator can access this screen and uncheck this checkbox.

Is Administrator?

Read-only checkbox. When checked, indicates the user performs administrator tasks and should have administrator rights. Whether or not this checkbox is checked is calculated by the system based on the following properties:

·       User is a super user (i.e., the Is Super User? checkbox is checked)

·       User belongs to a security group with access to Application Designer and Database Designer (i.e., the Can Use Application Designer? and Can Use Database Designer? checkboxes are checked)

·       User belongs to a security group with access to publish screens (i.e., the Can Publish Screens? checkbox is checked)

·       User belongs to a security group with access to use debug tools (i.e., the Can Use Debug Tools? checkbox is checked)

·       User has permission to application screens (i.e., the Administrative Application checkbox is checked) and admin access points (i.e., the Administrative Access-Point checkbox is checked).

This checkbox is checked automatically based on the criteria outlined above. It is a requirement for PA-DSS/PCI that all activities performed by a user who has "administrative" rights must be recorded. The "Is Administrator?" checkbox is an indicator that all of the user's activities are tracked by PA-DSS audit logging service.

Contact Tracking Staff

Checkbox. As of 7.6.1, indicates the user is a staff person who can be assigned to contact tracking items. If this checkbox is checked, the user will display in the Staff Assigned drop-down on the Contact Tracking screen when adding a new record.

Please keep in mind that this checkbox does NOT affect security on the Contact Tracking screen. Staff that are NOT marked as contact tracking staff will still be able to add, view, and edit contact tracking records (assuming they already have the permissions to do so).

Allow Email Alert?

Checkbox. When checked, indicates the user is allowed to receive email alerts from the system through Contact Tracking alerts.

Auto Create Batch

Checkbox. As of 7.6.2, this checkbox was added to support batch functionality in PersonifyGO. If this checkbox is checked, the system will automatically open a batch when the user proceeds through the payment workflow in PersonifyGO. If this checkbox is NOT checked, when the user tries to create a batch through the payment workflow, the Batch Chooser screen will open asking the user to select a direct or deferred batch.

The security setup defined for the security group to which the user belongs will override the Auto Create Batch flag. Therefore, even if the Auto Create Batch checkbox is checked, if the user does not have access to create batches, the system will NOT auto-create a batch.