Users and groups

Central to content security is the Users and User Groups dashboard, in which you can create users and Basic user groups, and make assignments to roles. If IFS or LDAP authentication is used, you can register, in EPM Administration, users and User groups that exist within those authentication systems.

Basic user groups provide a method to group users and User groups within Infor EPM.

Some Basic groups are built-in and, through their assignments to roles, provide standard permissions in all applications. An exception is the Every SSO User group, which is not assigned to any role. The inbuilt groups, and the permissions of the roles to which they are assigned, cannot be edited or removed.

This table shows the inbuilt groups and their role assignments:


Basic group	Assignments
Administrators	Assigned to all repository roles and to MasterRole in all applications
Every SSO User	The default group for all users and groups, and all registered LDAP or IFS users and groups
Power Users	Assigned to DesignerRole in all applications
Viewers	Assigned to ViewRole in all applications

If IFS or LDAP authentication is used and you register a group, then any member of that group who signs in becomes an implicit user.

Note: After adding users, you must republish the model.

Deleting any user, whether implicit or explicit, deletes information relating to the user. This includes for example, their favorites in Self-Service. However, it does not include the user's tasks in workflow. Those can be reassigned to other users. In Budgeting & Planning, select Business Configuration > Configuration Set-specific Settings>Workflow Configuration.