User management
Learn how to manage user accounts in your organization, including adding, editing, and deleting users, understanding user roles and permissions, and ensuring authentication security.
On the User Management page, you can add, edit, or delete user accounts for your Organization. By default, Mindful users log in with a combination of email address and password.
Adding New User Accounts
Quick access: Organization > User Management
- On the User Management page, click Invite Users.
In the Invite Users modal window, provide values for the two required fields:
Email: You can invite one or more users in this field. Follow the on-screen instructions for separating email addresses.
Roles: Click the dropdown menu to select a single or multiple Roles. All addresses invited in a group will receive the same Role permissions selected here.
Click Invite to send a registration email with a temporary password to the listed users.
Editing User Accounts
On the User Management screen, click the Edit icon in the row of the user account you want to edit. This opens the Edit User modal.
- Email - The user's email may be updated, but they will have to log in again with the new email address once this change is saved.
- Name - The user's name may be updated.
- Roles - The user's Role may be changed.
Click Save when finished.
Deleting user accounts
This action can only be performed by users with Administrator access.
- On the User Management page, click Delete in the row of the user account that you want to permanently remove. When prompted, confirm the deletion.
User roles and permissions
Mindful includes several default user roles with different levels of access (Administrator, Manager, Viewer) for different components of the platform, in addition to allowing custom user roles with any combination of permissions. It is common to combine several default roles to achieve the level of access needed for administrators and other users.
Consult the following tables to view the permissions granted by each default role.
Callback
Callback user roles grant access to pages related to Call Targets, Scheduler widgets, reports, and more.
| Page | Administrator | Manager | Viewer |
|---|---|---|---|
| Callback Overview (coming soon) | All | All | All |
| Callback Status | All | All | All |
| Call Detail | All | All | All |
| Insights | All | All | All |
| Exports | All | All | All except for Audit reports |
| Global Settings | Most settings (some are reserved for Mindful staff) | Some settings (no messaging) | No access |
| Call Targets | Most settings (some are reserved for Mindful staff) | Most settings (some are reserved for Mindful staff) | No access |
| Smart Rules | All | All | No access |
| Business Units | All | No access | No access |
| Media Sets | All | All | No access |
| Phone Numbers | All | All | View only |
| Widgets | All | All | No access |
| Templates | All | All | No access |
| Intents | All | All | No access |
| User Data Sets | All | All | No access |
| Access Control Policies | All | View only | No access |
| API | All | All | No access |
| Alerts | All | All | View Only - cannot acknowledge/clear alerts |
Connections
The Connections administrator role grants full access to configure and enable any available connection.
| Page | Administrator |
|---|---|
| Connections | All |
Datastore
These roles grant access to the Lookup Data Set and Data Set Templates pages to manage Mindful Datastore.
| Administrator | Agent | |
|---|---|---|
| Lookup Data Set | All | All |
| Data Set Templates | All | No access |
Handoff
Handoff user roles grant access to the Block List and Message Lookup pages. All Handoff roles can view and search for entries on both pages.
| Page | Administrator | Manager | Viewer |
|---|---|---|---|
| Block List | All | All | All |
| Message Lookup | All | All | All |
Mindful API
The Mindful API user roles grant access to the Application Clients page.
| Page | Administrator | Viewer |
|---|---|---|
| Application Clients | All | View only |
Platform Management
These roles grant access to manage user accounts and roles.
| Page | Administrator | Manager | Viewer |
|---|---|---|---|
| User Management | All | View and edit existing users | View only |
| Application Roles | All | View default roles / View and edit existing custom roles | View only |
Webhooks
Webhooks user roles grant access to the Webhooks page.
| Page | Administrator | Viewer |
|---|---|---|
| Webhooks | All | View only |
Authentication Security
Several security measures are in place to restrict abnormal attempts to access the platform:
- Passwords are masked in the UI on the login page and user account page.
- Users are automatically logged out after 15 minutes of inactivity.
The following actions will cause a user account to be locked out for 30 minutes:
- Three failed login attempts are made within 15 minutes.
- A new attempted login occurs within three seconds of the last failed attempt.
Note that the count of login attempts does not reset based on a timer. Rather, it only resets upon a successful login, regardless of how much time has passed. Also, there is no way to lift the 30-minute lock-out period. After being locked out, a user must wait 30 minutes before attempting to log in again.
