Topic:

Users - Administration and Configuration.

Description:

The Users screen, as shown following, lists all the users that have access to NC4 Risk Center. Depending on your role and privileges, this is where you can view and update information about the users.

• Root Organization Administrators will see all users in the system, regardless of the organizations to which the users belong.
• Sub-organization Administrators will see only the users who have been assigned to their individual Sub-organization.

Your organization’s NC4 Risk Center Users

As with the other lists in the system, the list of Users is displayed in a table format and can be sorted using the ascending/descending sort icons in the column headings. You can also print the listed information to a PDF file or export it to an Excel spreadsheet for review.

The column headings include:

• Last Name – shows the last name of the NC4 Risk Center user in the organization which you have access privileges to view and modify. Click on the linked Last Name to access the Update User screen.
• First Name – shows the first name of the user.
• Login ID – shows the Login ID of the user.
• Organization – shows the organization to which the user belongs.
• Groups – shows the Groups to which the user belongs.
• Login Count – shows the total number of times the user has logged onto NC4 Risk Center with an assigned Login ID.
• Last Login Date – shows the last date/time that the user logged onto NC4 Risk Center with an assigned Login ID.
• Email – shows the Email address for the user.
• Sensitivity – shows the information sensitivity level assigned to the user.
• User Type – shows the User Type (Full-Access or Alert-Only), which defines the access privileges for an NC4 Risk Center User. Full-Access users have complete access to the online system, including special events, creating Locations, and the Situation Map. Alert-Only users have very limited online functionality – they can only edit alert profiles and view information about alerts they receive.
• Updated Date – shows the last date/time that information about the User was updated in NC4 Risk Center.

Searching Users

The search feature is consistent throughout NC4 Risk Center. Use the Search field area, previously described in Knowledge Base Article 000049273 - NC4 Risk Center - Organizations and Sub-organizations - Administration and Configuration, to find specific users in a long list.

Updating User Information

When your NC4 Risk Center account is first provisioned by NC4, it will be provided with generic User IDs that you will then need to update based on your organizational needs.

As an Administrator, you need to provide those in your organization that need access to NC4 Risk Center with their Login ID and Password. Only one person can log onto NC4 Risk Center per Login ID. Users are not able to conduct multiple NC4 Risk Center sessions simultaneously using the same Login ID.

The attached table describes the fields you will use to update user information.  

The geo-location feature is consistent throughout NC4 Risk Center. The instructions for geo-locating locations found in the article, 000049250 - NC4 Risk Center - Registering and Managing Locations are the same for geo-locating Users. You may choose to Locate By Address or Locate By Map.

When all the available information has been entered about the User:

1. Click on the Save button. A dialog box will notify you if you have not completed all of the required fields.
2. Or, click on the Cancel button to close the Create a Location window without saving any changes.

Resetting a User ID

When a user leaves a position or no longer needs a Login ID, you can use the Reset User button to remove the user information and most of that user’s footprint in the system.

When you click on the Reset User button, the following items are deleted or reset to default values:

• User Profile, Login Information, and Basic Settings
• Alert Profiles and Alert Inbox
• Device Profiles and Related Settings
• Group Membership
• Individual feature assignments, such as HRAP. Contact the NC4 Support Center to transfer feature assignments.

Once you have confirmed the reset, the User fields are automatically reset to the following:

• Last Name – will reset to Full-Access# or Alert-Only#, where # is the next available sequential number to ensure that a unique Last Name is assigned in the system.
• First Name – will reset to the organization name.
• Login ID – The new Login ID field is system-generated, using [Last Name]@[Org Name].com
• Email – The Email field is erased and left empty.

Changing a User Password

By default, accounts will be locked out after 3 unsuccessful login attempts within a 4-hour period. Should a user lock their account and then enter the correct credentials within that 4-hour period, they will receive an Access Denied message advising they are not authorized to access the service. A message will be displayed to contact their Administrator for assistance or contact NC4 Support at support@NC4.com or call us toll free at 888-NC4-4411.

If a user is locked out of the system, the account password will need to be reset by the Administrator, by NC4 Support or by the user using the Forgot Password link.

To change a User password:

1. Select the appropriate Login ID from the drop-down list, as shown below.
2. Click Yes to issue a System generated password, or click No and type your own New Password in the field provided.
3. Click the Change Password button to complete the process. The password will be delivered to the email address on file associated to the Login ID.

Changing User’s Passwords

Changing the Organizations Password Policy

The above image shows the password criteria used by NC4 Risk Center. Administrators can specifically request an even stronger password policy that could include:

• At least one uppercase alphabetic character required
• At least one lowercase alphabetic character required
• At least one numeric character required
• Password is required to be different than the previous X passwords used
• Password is required to expire after X days
• Password can only be changed once in X period of time

Stronger passwords can help prevent the inadvertent discovery of a password by a malicious party, whether due to continual use, due to use of words that are easily guessed, and for other reasons.