Configuring user requests
Allow users to request access to Trelica.
User requests allow individuals from your organization to request access to Trelica by signing up with their work email address. This is useful if you cannot enable SAML-based single sign-on and you do not want to add users manually.
When a user signs up for an account using an email address from a domain that you own, a notification is sent to specified users for review and approval. Once the request is approved, the user is created with the Admin role. The user can then log in with their email address and password, or use single sign-on via OpenID Connect.
To enable users to request access to Trelica:
- 1.
- 2.Expand Domains and check whether your organization's domains are listed. If your domain is not listed, contact your customer success representative.
- 3.Expand Account request notifications. Any users that have been configured to receive notifications when a new user request is made are listed. To specify a user who should receive these notifications, enter the user's name or email address and then click Add.
The settings for configuring user requests.
When user requests are enabled, a "Sign up" link is displayed on the login page. If a person attempts to sign up or log in with their organization email address and there is no existing user account associated with that email address, a user request is created.
By default, when a user requests access to Trelica, they set a password for their account. In addition or as an alternative you can enable single sign-on (SSO) with OpenID Connect ("social login") so that users can sign up and log in with an existing account in Google Workspace or Microsoft Azure AD.
Users can only SSO with email addresses from domains that you own; they cannot SSO with @gmail.com or @microsoft.com accounts.
To configure the login options:
- 1.
- 2.Under Single Sign-On expand SAML options.
- To allow users to log in with their email address and password, select Allow password login.
- To allow users to SSO with an existing Google or Microsoft account, select Allow OpenID Connect.
- 3.Click Apply changes.
According to the options you have enabled, the SSO OIDC providers and the email address and password options are displayed on the Trelica login page.
Trelica sign up page with user requests enabled.
Once the account request has been approved, only the option the user set up is displayed. Users can enable alternative login options from their profile page (subject to what is enabled):
- 1.When logged in to Trelica, in the top right-hand corner click your profile icon and select your user name. The profile page is displayed.
- 2.Select Password or External login and make changes as appropriate.
To review and approve user requests, open the Users Settings page again and expand Account requests. Any pending requests are listed. Select each request to approve or reject it.
When you approve a user request, the user is given the Admin role by default. To change a user's role, open the Users view, select the user, click the menu icon and click Edit. Select the appropriate role from the Roles dropdown list and then click Save.
Last modified 10mo ago