Users and groups

Central to content security is the Users, Groups and Roles dashboard, in which you can create users and user groups, and make assignments to roles. If IFS or LDAP authentication is used, you can register, in EPM Administration, users and User groups that exist within those authentication systems.

User groups provide a method to group users and User groups within Infor EPM.

Some groups are built-in and, through their assignments to roles, provide standard permissions in all applications. An exception is the Every SSO User group, which is not assigned to any role. The inbuilt groups, and the permissions of the roles to which they are assigned, cannot be edited or removed.

This table shows the inbuilt groups and their role assignments:
Basic group Assignments
Administrators Assigned to all repository roles and to MasterRole in all applications
Every SSO User The default group for all users and groups, and all registered LDAP or IFS users and groups
Power Users Assigned to DesignerRole in all applications
Viewers Assigned to ViewRole in all applications

If IFS or LDAP authentication is used and you register a group, then any member of that group who signs in becomes an implicit user.

Note: After adding users, you must republish the model.

Deleting any user, whether implicit or explicit, deletes information relating to the user. This includes for example, their favorites in Self-Service. However, it does not include the user's tasks in workflow. Those can be reassigned to other users. In Budgeting & Planning, select Business Configuration > Configuration Set-specific Settings>Workflow Configuration.