User Management

Data Protection on Demand Service Provider Administrators and Tenant Administrators can manage any user accounts within their tenant. Service provider administrators can manage other service provider administrators in their tenant. Tenant administrators can manage other tenant administrators or application owner users in their tenant.

Administrators may:

• Add a User
• Delete a User
• View and Edit User Details

Users can:

• Change your Password
• Reset your Password
• Reset your MFA Token
• Register a Passkey
• Access the Profile Page

Add a User

Service Provider Administrators can add and manage additional service provider administrators to assist with managing a service provider tenant. Tenant Administrators can add and manage additional tenant administrators and Application Owners.

To create a new tenant you must be a service provider administrator. See the section Adding a Tenant for more information.

1. From the Accounts tab under Users select a user tile:

   • Service Provider Administrator
   • Administrator
   • Application Owner

2. Enter the criteria for the user account.

   Tip

   Application owners must belong to a Subscriber Group. We recommend creating the subscriber group before adding an application owner. Failure to have the subscriber group available will result in the application owner being created in the incorrect environment, or the tenant administrator having to restart the registration process. See the section Subscriber Group Management for further details.

3. Click Add User.

Delete a User

Administrators can delete tenant users.

You cannot delete a primary administrator. To delete a primary administrator you must delete the tenant. Only service provider administrators can delete tenants.

1. If administering a service provider tenant click the Users tab or if administering a subscriber tenant click on the Accounts tab and select the Users sub tab.

2. Select the users Email Address and click Delete User, or select the Actions column drop-down next to the user and click Delete User.

3. Click Delete.

View and Edit User Details

Administrators can view and edit tenant user details. The following fields are editable:

• First Name
• Last Name

You cannot edit a users Email Address. If the user is a primary administrator we recommend creating a secondary administrator account using the new email address. If the user is not a primary administrator create a new account using the correct email address and delete the old user.

1. If administering a service provider tenant click the Users tab or if administering a subscriber tenant click on the Accounts tab and select the Users sub tab.

2. In the Users table, click on the email address in the Email Address column of the user you wish to access. The Users details page displays.

3. Click the Edit icon in the upper right corner.

   The editable fields are highlighted as blocked fields.

Change your Password

You can change your account password from your tenant instance.

1. Log in to your DPoD tenant.

2. Click the account drop-down menu in the upper right corner of your tenant instance.

3. Select Change Password.

   Verify your Old Password, enter a New Password and confirm it in Confirm New Password.

Reset your Password

You can reset your password from the DPoD login page.

1. Click Help on the DPoD login page.

2. Select I forgot my password and click Forgot Password.

3. Enter the account email address and click Continue. If the account exists, an email will be sent to the provided email address to begin the password reset process.

Reset your MFA Token

If you have account access, you can change your MFA token from your tenant instance. If you do not have account access you must contact Thales support to reset the MFA token.

1. Log in to your DPoD tenant.

2. Click the account drop-down menu in the upper right corner of your tenant instance.

3. Click Reset MFA Token and confirm the request by clicking Reset. You are required to reconfigure your MFA Token on your next log in.

Register a Passkey

A Passkey is a secure authentication method used to log in to various websites or applications.

• You may register multiple Passkeys to your account.

• Passkeys are optional; all accounts must still be protected by a password and multi-factor authentication (MFA).

• You can remove any registered Passkey from your user profile page at any time.

A Passkey can be registered in a number of ways. In order to begin the registration process go to the Sign in to Data Protection on Demand page and login.

At this point you can use any of the following options:

Option 1 - A Passkey can be created by selecting your email address located at the top-right section of the page and choosing the "Edit Profile" option. From the left side of the page select "Security" followed by the "Create a Passkey" option.

Option 2 - From the Sign in to Data Protection on Demand page select the "Help" option below the signin options, select "Register my Passkey" and follow the prompts.

Access the Profile Page

This section explains the options available in the Profile section.

Steps:

1. Go to the Sign in to Data Protection on Demand page and login.

2. Select your displayed email drop-down menu at the top-right of the page and then "Edit Profile".

There are four profile options available:

1. Profile

   • Provides the ability to change the user's name.

2. Privacy

   • Displays the consented "Terms of Service" and "Privacy Notice".

3. Security

   • Provides the ability to "Create a Passkey", "Revoke a User" or to "Change Password".

4. Timeline

   • Displays a log of all events that have taken place listed by type of action, date and time.