Users
Select Security > Users.
A user is someone who accesses FME Server applications, services, and other resources. A user can belong to one or more roles.
For more information about users and roles in FME Server, see Role-Based and User-Based Access Control.
When FME Server is installed for the first time, default user accounts are created.
The columns displayed in the Users table are:
Name: Name of the user account.
Full Name & Email: Full name of user and e-mail address.
Roles : Roles assigned to the user account.
Status: Whether the User account is enabled or disabled.
Quick Tasks
- To enable or disable user accounts, check their corresponding boxes, and click Enable or Disable.
- To remove users, check their boxes, and click Remove.
- To restrict or expand your view of users to hide or show Active Directory users, click Options and check (or uncheck) Hide active directory users.
- To add users to roles, select one or more users and click Add Roles. In the Add Roles dialog, click inside Role(s) to Add and select a role to which to add the user(s). Repeat to add the user(s) to more roles.
Adding and Removing Users
To add a user account, click New. Alternatively, select an existing user and click Duplicate. A dialog displays to add a new user account. This dialog is similar to Configuring an Existing User, below.
To remove a user account, select it and click Remove.
Viewing and Configuring User Permissions and Other Settings
To configure an existing user account, click an entry in the table. The Edit User page opens. Configure the following settings, and click OK to save your changes.
Full Name
Name of the user account.
Account Enabled
If green (slider to the right), the user account is enabled. To disable the user account, move the slider to the left.
Sharing Enabled
If green (slider to the right), the user can share items they own or manage with other users or roles. To disable sharing, move the slider to the left. For more information, see Shared Access
(Optional) Email address of the user. This field must be set if Reset Password is enabled and you want this user to be able to reset their password.
Assigned Security Roles
Roles to which the user belongs.
To assign roles to the user, click inside the blank space of the field and select a role in the drop-down. To remove roles from the user, click the "x" beside the role name.
Change Password
(Optional) Click to change the password that must be entered by the user to log in.
Tip: To allow users to reset their own passwords, see Reset Password. To set standards for new and updated passwords, see Password Policy.
Permissions
You can give a user access to different functions in FME Server, regardless of assigned role. Check the box beside a function to grant access. If a user already has access through membership in a role, it is indicated with a check icon. Mouse-over an icon to see the role through which permission is granted.
There are two levels of permissions:
- General: Allows a user to view the corresponding navigation link in the Web User Interface, along with select management functions, depending on the category. For example, if Access is checked beside Repositories, the user can access the Repositories page. Additionally, if Create is checked, the user can create repositories on the Repositories page.
- Item: Allows a user specific permissions on items within functional categories. To view items, click the drop-down icon of a category (v). For example, when you expand the Repositories category, you see the individual repositories on your FME Server, along with the permissions that can be granted for each one.
The following is a detailed explanation of general- and item-level (where applicable) permissions for each category:
- Access: Access the Run Workspace page.
- Advanced: Access Job Directives when running workspaces.
- Access: Access the Jobs page to view the jobs you have run, or cancel any of your jobs that are currently running or in queue.
- Manage: Access and manage the jobs of all users. You can:
- Cancel any job that is currently running.
- Remove the history of jobs that were previously run.
- Manage Job Queues. (Also requires Manage permission in Engines & Licensing.)
- Create: Create workflows.
- Write: View, edit and remove a workflow.
Note: Automations requires additional permissions. You are prompted to grant any additional permissions that are required.
Individual Automations:
- Access: Access the Schedules page.
- Create: Create schedules.
- Allow: Edit or delete a schedule.
Individual Schedules:
- Access: Access the Repositories page.
- Create: Create repositories.
- Download: Download workspaces and other repository items from FME Server into Workbench.
- Read: View repository information.
- Publish: Publish workspaces and other items to the repository from Workbench.
- Run: Run repository workspaces from FME Server.
- Remove: Remove a repository, or remove items from a repository.
Note: Access permission is not required to run a workspace. Only Run permission on the applicable repository is required (see below).
Individual Repositories:
Note: Users must also have Allow permission on the applicable service (see Services) when running workspaces.
Note: You must uncheck all five permissions to completely remove a role from membership with a repository.
- Access: Access the Workspace Viewer.
- Access: Access the Publications page.
- Create: Create Notification Service Publications.
- Read: View information about a publication.
- Write: Edit a publication.
- Remove: Delete a publication.
Individual Publications:
- Access: Access the Subscriptions page.
- Create: Create Notification Service Subscriptions.
- Read: View information about a subscription.
- Write: Edit a subscription.
- Remove: Delete a subscription.
Individual Subscriptions:
- Access: Access the Topics page.
- Create: Create topics.
- Read: View information about a topic.
- Write: Edit a topic.
- Publish: Publish notifications to a topic.
- Remove: Delete a topic.
Individual Topics:
- Access: Access the Resources page.
- Create: Create connections to network resources.
- Access: Read and download a file.
- List: List the folders and files of a resource.
- Write: Write to files.
- Upload: Upload files.
- Remove: Delete files.
Individual Resource connections (top-level folders):
- Access: Access the Database Connections and Web Connections pages.
- Create: Create connections.
- Manage: Access, create, and remove connections.
- Full Access: Manage web services.
Individual Connections:
- Access: Access the Projects page.
- Create: Create projects.
- Read: View information about a project.
- Write: Edit a project.
- Delete: Delete a project, or delete items from a project.
Individual Projects:
Note: Access or Create permission is not required to have Read/Write/Delete permission on individual projects. These tasks can still be accomplished with the REST API.
- Access: Access the Dashboards page.
- Manage: Configure engines and licensing, except job queues (requires Manage permission in Jobs).
- Manage: Configure users and roles.
- Manage: Configure system cleanup.
- Manage: Configure System Events.