Enterprise Administration
- Enterprise Administration: The Enterprise Administration feature enables the Account Administrators in an organization to manage users, groups and accounts for their lines of business. Account administrators can manage users and multiple accounts from a centralized location. This includes organizing multiple accounts into sub-accounts, control sharing abilities between users and accounts, and configure self-service branding capabilities across all accounts. This feature leverages the following items:
- Roles and Permissions — When a user is added to an account, the Account Administrator assigns them a role with an associated set of permissions that determine the actions available to the user. Roles make it easy to manage the access rights of a large number of users without having to change permission options on an account-by-account basis. The following default roles are available within every account (each with its associated set of permissions): Administrator, Manager and Sender. These default roles are not customizable, and they cannot be deleted. Account Administrators can nonetheless: (1) create customized roles, assigning a customized set of permissions to each one; (2) make a customized role available within specified accounts or sub-accounts.
- Sub-accounts — The sub-accounts feature enables an organization to create child accounts within the organization's master account. For example, an organization might want to create child accounts on the basis of its departments, geographical locations, or lines of business. Accounts can be created on three levels (parent > child > grandchild), enabling an organization to manage many account types under its master account.
- Branding: Account Administrators can re-brand parts of the Signer Experience for signers such as logos and color schemes.
Please contact our Support Team to configure Enterprise Administration for your accounts. The configuration options include: (1) activating roles and permissions for specific accounts; (2) activating the sub-accounts feature; (3) converting an existing account into a sub-account under an existing master account.
Changing Accounts
To change the account that you're working within:
- Click the Accounts icon on the Navigation Bar.
- Select the account or sub-account to which you'd like to switch.
Sub-Account Limitations
Sub-accounts are subject to the following limitations:
| Limitation | Description |
|---|---|
| Production Accounts | Once a sub-account has been enabled in Production, it cannot be disabled. |
| OneSpan Sign Connectors | Sub-accounts are not supported for OneSpan Sign connectors. |
| Client Apps | An integrated customer using Client Apps cannot use sub-accounts. Sub-accounts do not work with Client Apps. |
| SSO (Single Sign-On) | Sub-accounts are not supported with SSO (Single Sign-On). |
| Consolidated Reports | Downloading a single consolidated report for all sub-accounts is not supported. |
| Account Owners | If sub-accounts are enabled, the concept of an Account Owner no longer applies. Instead, the former Account Owner becomes the Admin of the root account, with permission to manage the sub-accounts' users. |
| Inherited root account settings |
Sub-accounts do not inherit the following root account setting:
|
| Merging enabled sub-accounts with other sub-accounts | The system does not support merging an account with enabled sub-accounts into an account without enabled sub-accounts. It can only convert an account without enabled sub-accounts into a sub-account of a different root account/account tree. |
| Moving users | The system does not support moving users from one sub-account to a sub-account of a different tree. |