Configure the process for adding users to CertCentral from DigiCert account
Use these instruction to configure the process for adding users to CertCentral with DigiCert account.
Before you begin
With DigiCert account, add the user to your account and then assign them to CertCentral. When assigning users to CertCentral, you can require administrator approval before granting access or automatically grant access using a configurable default role.
Require administrator approval before adding a user to CertCentral
By default, when adding a user to DigiCert account and assigning them to CertCentral, a CertCentral administrator must approve the new user, assign the user a role, and set up division restrictions as needed before granting the user access to CertCentral.
Automatically add the user to CertCentral using a default role
Instead of requiring administrator approval, configure a default role for automatically adding users to CertCentral from DigiCert account. After the user signs in to DigiCert account and accesses CertCentral, you may need to update their roles and division restrictions before they can work on required tasks.
Considerations for using a default role
Limit what users can access and do in CertCentral.
To limit what users can view and do in CertCentral until you assign them the proper access, consider the following:
Use the Standard User or Limited User role as the default user role.
If using divisions, create a special division with limited access to your organizations and domains and restrict the default role to this division.
See Create a division.
After users activate their CertCentral service, update their role and division restrictions as needed.
Add users in batches.
Instead of updating user access after the user activates their CertCentral service, you can add users in batches using a default role with the correct CertCentral access.
For example, you must add 20 people to two divisions with the Standard user role. In this case, configure the default role to meet those requirements. Then, add the 20 users to DigiCert account and assign them to CertCentral. After the users have activated their CertCentral service, update the default user role for the next batch or use the administrator approval process.
重要
When adding users in batches, do not update the default user role or switch to the administrator approval process until all users from the batch have activated their CertCentral service. Any changes to the process will affect users when activating their CertCentral service, such as a user's CertCentral permissions.
Configure the process for adding users to CertCentral via DigiCert account
In CertCentral, go to Settings > Preferences.
On the Preferences page, expand Advanced Settings.
In the DigiCert account user management settings section, select one of the following options:
Require administrator approval before granting access
With this option, a CertCentral administrator receives an email notification from the DigiCert account that someone needs access to CertCentral. Only after an administrator approves the user and assigns them a role can they access CertCentral.
Automatically grant user access using a default user role
With this option, automatically add users to CertCentral using a default user role.
Restrict the default role to a division
This option only appears if you are using divisions in your account.
Select Restrict the user to specific divisions to restrict the default user role to specific divisions. See Unrestricted versus restricted.
In User is restricted to the following divisions, select the divisions you want to restrict the default role to.
Assign a default user role
Under Role, select the default user role: Administrator, Manager, Finance Manager, Standard User, or Limited User. See Roles and CertCentral access.
To use a Limited User role, select Standard User and select Limit to placing and managing their own orders.
When ready, go to the bottom of the page and select Save Settings.
What's next
The next time a user activates their CertCentral service, they will use your newly configured add user process.