Skip to main content

Users

The Users page in the Admin Web UI provides a central interface to manage user accounts that can connect to your Access Server. From here, you can view user details, create new accounts, edit users, and search for specific accounts.

๐Ÿ‘ฅ User table overview

When you open the Users page, you'll see a table listing configured user accounts. The table includes:

  • Username: The account name used to sign in. Blocked users are visually highlighted.

  • Role: Indicates if the user is an admin or a standard user.

  • MFA: Displays whether multi-factor authentication is enabled.

  • Auto-login: Shows if auto-login connection profiles are allowed for the user.

  • Group: Displays the user group assigned for access control settings.

Each row also includes:

  • โœ๏ธ Edit Button: Quickly edit basic account settings.

  • โ‹ฎ More Button: Access additional actions, including:

    • Edit

    • Block/Unblock

    • Delete

    • Change Group

    • Reset Password

    • Download Profile

    • Enable or Disable MFA

    • Set Up MFA

๐Ÿ” Search and filter

At the top of the page, you can search by username or use filters to narrow down the list:

  • Filter by Role: Admin or User.

  • Filter by Auto-login: On or Off

  • Filter by Group: Select a specific group.

These tools make it easy to manage large user bases.

โš™๏ธ Customize table view

Click the Table Settings icon to:

  • Reorder columns (e.g., move Group before Role).

  • Hide any fields you don't need to see.

Your table layout will stay consistent until you change it again.

โž• Add new user

Use the Add New User button at the top of the page to create a new account. Youโ€™ll be prompted to enter the username and (optionally) assign them to a group before proceeding to the detailed user setup page.

Single User Page

Clicking a user from the Users page opens the Single User view, where you can manage that specific userโ€™s settings, access permissions, connection profiles, and connectivity options.

This page is organized into four tabs:

  1. User Settings

  2. Group and User Access Rules

  3. Connection Profiles

  4. Intergroup Connectivity

Note

Some settings inherit their values from the default user or group configuration. These appear dimmed and can't be edited unless you uncheck Use default setting or inherit from group setting to override the setting.

๐Ÿ‘ค User settings

This tab contains configuration options grouped into three sections:

  1. Permissions

    • Assigned to group: Displays the user's current group assignment.

    • User role: Choose between Admin and User.

    • Allow Auto-login: Enable or disable auto-login for this user.

  2. Authentication

    • Auth method: Displays the authentication method used (e.g., Local, LDAP, RADIUS, SAML).

    • Require MFA: Toggle whether the user must use multi-factor authentication.

  3. Networking

    • IP addressing: Assign a static IP if needed or use dynamic addressing.

    • DMZ configuration: Set up port forwarding rules for this user.

    • Configure VPN gateway: Allow the client connecting with this user account to act as a VPN gateway for specified client-side subnets.

    • Allow access from all server-side private subnets: Check to grant access from all server-side networks.

    • Allow access from all other VPN clients: Check to allow peer-to-peer access between VPN clients.

๐Ÿšช Group and user access rules

This tab lists any user-specific Access Rules that override group-level defaults.

  • Use the New Access Rule button to define new routing, NAT, or restriction rules specific to this user.

  • Existing rules can be edited or deleted directly from the table.

๐Ÿ“ฆ Connection profiles

Manage connection profiles available to this user.

  1. View existing connection profiles.

  2. New Connection Profile: Generate a new connection profile for this user with the desired profile type.

  3. New Token URL: Create a profile download URL (useful for auto-deployment or onboarding).

  4. Delete Connection: Remove any obsolete profiles from the server with the delete icon.

๐Ÿ” Intergroup connectivity

View the user's inherited group roles.

  • Select between All, Two-way, or One-way connectivity rules.

  • If no intergroup rules exist, the message "No intergroup connectivity rules found: is displayed.