About User Management

Managing users is the process of creating, editing, and deactivating user profiles, and assigning roles to those profiles

There are two methods of managing users in Forms & Workflow.

1. In the Admin area.

2. With an external system like Microsoft Azure AD or the Websites & CMS OE (OpenCities) platform.

Depending on your organization's needs and IT policies, you can manage users with any combination of methods, although an individual user can only be managed by one system at a time.

If you opt to manage users externally, it’s important to retain at least one Account owner managed in the Forms & Workflow admin area. This user can access forms and responses in the event of an outage in your external system.

Local User Management through Admin

When you first start using Forms & Workflow, the default method of managing users is through Admin > Users.

This is also where Admins and Account owners can see a full list of the users in your organization.

Users managed in the admin area:

• Have profiles created and updated by admins or account owners.

• Are managed individually and cannot be bulk updated. 

• Can update their own details and password in the platform.

User Management with Azure AD

If your organization uses Microsoft Azure AD to manage staff access to systems, apps, and services, you can use the Azure AD connector to manage Forms & Workflow users. The Azure AD connector is premium connector available via Integrations.

Users managed through the Azure AD connector:

• Are automatically assigned profiles and roles based on their Azure AD user group.
• Are added to Azure AD user groups by your IT team.
• Are managed in Forms & Workflow as groups by Account owners and cannot be managed individually.
• Login using their Microsoft SSO credentials for your organization.
• Cannot update their own details and password in the platform.

User Management via Websites & CMS OE (OpenCities)

If your organization has a Websites & CMS OE site, you can connect it with your Forms & Workflow account and use the CMS to manage staff that also use Forms & Workflow. For example, a content author with the OC Power Publisher role who can create a form and insert it into pages.

Users managed through Websites & CMS OE:

• Are automatically assigned profiles and roles based on their CMS role.

• Are assigned roles in the CMS by system admins, site managers, or user managers.

• Log in to Forms & Workfflow using their CMS credentials.

• Cannot update their own details and password in Forms & Workflow.

• Can insert forms directly into website pages from the WYSIWYG Editor.

If your organization has both a Websites & CMS OE site and an Azure AD account, we recommend using the Azure AD connector to manage Forms & Workflow users.

How Systems are Prioritized

If an individual Forms & Workflow user is managed by multiple user management systems, their profile and roles will be assigned according to the following priority order:

1. Azure AD

2. Websites & CMS OE (OpenCities)

3. Forms & Workflow

Each system completely overrides those below it.

For example, if your organization uses both Azure AD and Websites & CMS OE to manage users, and an individual user is assigned the Admin and Reviewer role through the CMS, but only the Reviewer role in Azure AD, they will only have the Reviewer role in Forms & Workflow.

Users managed in both Azure AD and Websites & CMS OE will have their profiles and roles managed in Azure AD, but retain the ability to insert forms into website pages.

User conflicts are defined by the user’s email address, rather than their name or other attributes, so it’s important to use the same email address for staff across user management systems.

What Happens if an External System is Disconnected

If your organization manages users via an external system, and you permanently disconnect from that system, the users managed by that system will be affected in following ways:

What Next?

• Manage users in the admin area

• Manage users with Azure AD

• Manage users with Websites & CMS OE (external link)