Usermanagement

Introduction

Relution features an internal user management system that allows you to create user accounts manually or add them via external providers. Some key points and special considerations are explained below.

Users Overview

  • Each user is created within a single organization in Relution.
  • A user cannot belong to multiple organizations simultaneously.
  • Multi-tenant support is available for administrative accounts, but the user account always resides in the original tenant.
  • All user accounts are stored in the database.
  • Email addresses must be unique; duplicate emails are not allowed.

Adding User Accounts

There are several ways to add user accounts:

  1. Manual account creation
  2. CSV file upload
  3. Integration with external providers (e.g., LDAP or AzureAD)

1. Manual Account Creation

  • Go to the Users section and click Add to open the input form.
  • Fill in all required fields.
  • Up to 15 custom fields can be filled in the lower section (useful for later policy variables).
  • Define permissions and groups as needed.
  • More information about permissions can be found in the corresponding section of this guide.

2. CSV File Upload

  • In the user overview, click the link for CSV upload.
  • Download the CSV template; the example already contains two pre-filled rows.

Required fields: name, email, givenName, surname, password. Additional columns can be removed if not needed.

  • After uploading, assign groups to the new accounts.
  • Click Import to save the user accounts in Relution.

The required password length under Settings > Credential Management > Minimum Password Length must match the password length in the CSV.

3. Integration with External Providers

  • When using an external provider (e.g., LDAP, AzureAD), the provider is always the leading system.
  • Imported content is updated automatically if it changes on the provider side.
  • Fields such as email address cannot be changed locally, as they will be overwritten during the next synchronization.
  • During login, Relution always authenticates against the configured LDAP. If the connection is u