Managing User Accounts

For all licensee, insurer, distributor, and client companies, access to the system is achieved through individual user accounts.  Each account has security roles defining what features and options are available, and an administrative level controlling what data can be accessed.

Managing User Accounts

1. In the main menu, select Reference, Companies & Users, then Users.  A list of all available users is displayed.



Tip: By default, only Active accounts are displayed.  Clear the filter in the Status column to view all accounts.

2. Select an action.
   • Click Create. The User Information page opens.
   • Click a link in the Last Name column to open an existing user account.
   • Check the boxes for one or more users and click Deactivate to deactivate the selected users. An Inactive user account prevents that user from logging into the system again.
3. When adding or viewing an existing user account, the User Information page opens. Complete the necessary information.  Fields marked with a red asterisk * are required.



Company Name	Select the company the new account is to be created under.
First Name	Enter the user's first name.
Last Name	Enter the user's last name.
Employee Number	A unique identifier code can be entered for the user.  This is used for integration purposes.



E-mail	Enter the user's email address.  This field is required, as it is used when logging in to the system.  This address is also used for any notification emails, as well as access emails when resetting a password.  Only a valid email address should be used, and should be kept current.
Phone	The user's phone number can be entered.



Single Sign-On (SSO) is when a user logs into an external system and then accesses the Bridge Specialty Suite from that system.  The login credentials are passed to the Bridge Specialty Suite and matched up to an existing account.

Single Sign-On Only	Checking this option means the current user can only access the Bridge Specialty Suite from the external system.  Single-sign-on users differ from normal users as follows.
	Login is handled through an internal configuration, so the user's password is deleted and the user will not be sent any emails related to the password.
	The user will not have access to the Profile page.
	If this option is unchecked, the user can log in through SSO or the standard login page.
User ID	This option is used when the external system uses a User ID other than the e-mail address.  Enter the user's ID from the external system, which will be matched to this user account through the single-sign-in process.  When an external ID has been defined, the user will not be able to login through the standard login page.



The Authentication Settings panel includes options for the authentication of user accounts.

Authentication	When Bridge is integrated with external systems such as Insurity, individual accounts are often required for each system.  The primary accounts are where the passwords are maintained, while secondary accounts may be required in the integrated systems to manage local settings.
	In the Authentication field, select which system has the primary account.  At login, the user will be authenticated in the selected system.
	If Bridge is selected, the primary account is managed within Bridge.  If Insurity services are enabled, they will be available without a secondary account. If Insurity is selected, the primary account is managed within Insurity.  A secondary account must exist within the Bridge system, and must have the same e-mail address as the primary account on the Insurity side.  Any new or existing password related to the secondary account will not be valid.  The other profile information within the Bridge account should be maintained, as it is used to define security rights, contact information, and other user-specific settings.
Bypass Multi-Factor Authentication	This option is available when Multi-Factor Authentication is enabled for the site. Multi-Factor Authentication adds an additional layer of protection to the login process. In addition to the user ID and password, the user must obtain a verification code using a QR Code app or by e-mail.
	If this is not required for the current user, check this setting to bypass the additional verification.



Administrative Level	This determines what range of company data can be accessed by the user.
Organization	This option is only available for users in Licensee companies. The user has access to data throughout the system.
Regional	The user has access to data for the current company and any subsidiary companies (only down in the same branch), plus managed companies and their subsidiaries.
Office	The user has access to data for the current company, plus managed companies and their subsidiaries.
Private	The user has access to any data they have created themselves.
	Note: If a user’s access is changed, either by changing the Administrative Level or through changes to the company hierarchy, the user will still have access to any data they have created.
Allow Multiple Logons	Check this box to allow the user to activate multiple simultaneous sessions.  If this is not checked, logging into the account from another computer or session logs out the previous session.



Use Browser Settings	This feature is not in use.
Cultural Settings	This feature is not in use.



The Data Access Link Management panel becomes available once the user account has been saved. This feature can be used to create links to other companies, providing access to data owned by those companies and their subsidiaries.

This list may contain additional links created by the system. These links are created when the current company is the Managing Company of another company, or when a client company is attached to a transaction associated to the current company.

1. Select an action.

• Click Add to add a new link.

• Click a link in the Name column to view an existing link. Note that existing links cannot be modified, but Administrative links can be deleted.
2. The Data Access Links window opens. The panels and fields are described below.  Fields marked with a red asterisk * are required.



Company Name	Search for and select the company to link to. The field includes available companies of type Insurer, Distributor, Assured (client), and Additional. By default, this creates an Administrative link, displayed in the Relationship Type column of the link list.
	If selecting another insurer company, this forms a hierarchy structure with the current company as a parent of the selected company.
	If selecting a distributor, client, or additional company type, this does not create a hierarchy structure.
	In both cases, users in the current company gain access to data owned by the selected company and any subsidiaries, within the limits of their Administrative Level.
Add to Hierarchy	This option moves the selected company and any subsidiary companies into the hierarchy of the current company. This replaces the Managing Company of the selected company, and removes access from the previous managing company. This changes the Relationship Type to Subsidiary.
	Note that Subsidiary links cannot be deleted once they have been saved.



Check one or more security roles for the user.  Each role contains a predefined set of rights which control access to all sections and features within the system.  You are only able to assign roles that you possess yourself, or which you have been authorized to assign to other users.

Note: Security roles are custom. If you are not certain which roles to apply to a new user account, or to request the creation of new roles, please contact your Insurity representative.



The Home Page Preferences panel provides settings that control what the user will see when they view the Home page in the current portal.  The user can modify these settings on their Profile page.

Display Welcome Page Content	Selects whether or not the greetings and instructions are displayed on the home page for the user.
	Note: The Welcome Page content may have been customized to provide important information or instructions.  Please review the content before deactivating it.
Display SmartView Panel	Selects whether or not SmartView is displayed on the home page for the user.  SmartView is a Business Intelligence application that allows users to work with data coming from external systems, conduct meaningful analysis, and create interactive visual analytics in the form of dashboards. All fully configurable and customizable.
	A default policy dashboard is provided for this option.
Display Submissions/Policies Panel	Selects whether or not the user will see the grid containing all available submissions and policies on the home page.
	Note: The Display SmartView Panel and Display Submissions / Policies Panel options are only available to users with the necessary rights to view each feature.

Note: The system supports the assignment of default Home Page Preference settings for new users. When enabled, the system will apply any default settings that have been saved for the Security Roles assigned to the user. Note that this behavior is only supported the first time one or more Security Roles are assigned. Default settings can still be overridden on the User Information or Profile page. For additional information, please contact your Insurity representative.

4. If you want to send the user's login information immediately, click Add to save the user information and remain on the page.  If the login information is to be sent later, click Add & Close to save and return to the user list.  Click Close to return to the user list without saving the user.
5. To send an access email to the user, click Assign Password after adding the user.  An access email is sent to the e-mail address registered in the account.



The Status panel becomes available once the user account has been saved.

Active	Marks the account as active and available for use.  If unchecked, the account remains functional and linked to any existing resources, but cannot be selected for new configurations.
Created By	Identifies the date and time the account was created, and the user who created it.
Last Modified By	Identifies the last date and time the account was changed, and the user who made the changes.

6. Click Assign Password to reset the user's password and send an access e-mail to the e-mail address registered in the account.
7. Click Save to save any changes and remain on the page, click Save & Close to save and return to the user list, or click Close to return to the user list without saving any changes.

Resetting a User's Password

Some users have the option to reset their own password through their profile page, or using the Forgot Your Password link on the login page.  If they are unable to reset their own password, a user with the proper rights can reset their password for them.

1. In the main menu, select Reference, then select Companies & Users, then Users.  A list of all available users is displayed.



Tip: By default, only Active accounts are displayed.  Clear the filter in the Status column to view all accounts.

2. Click a link in the Last Name column to view the user information.  If there are a large number of available users, see the Using Grids section for help on finding the appropriate user.
3. Click Assign Password to reset the user's password and send an access e-mail to the e-mail address registered in the account.

For details on the default password settings, see the Default Password Requirements and Settings section.

Generating the Users & Roles Report

When an organization has a large number of users with a variety of roles, it can be time-consuming to review individual user accounts.  The Users & Roles Report provides a full list of users and their associated security roles.

1. In the main menu, select Reference, then select Companies & Users, then Users.  A list of all available users is displayed.



Tip: By default, only Active accounts are displayed.  Clear the filter in the Status column to view all accounts.

2. Click Users & Roles Report.  The report is produced in Excel format.  A standard Save / Open dialogue box appears.  Select if you want to Open the file, Save the file to your computer, or Cancel the download.
3. When viewing the report, the following information is provided.



Last Name	Displays the last name of the user.
First Name	Displays the first name of the user.
E-mail	Displays the e-mail address of the user.
Company Name	Displays the name of the user's company.  This will be blank for individual client accounts.
Type	Displays the type of the user's company.  This will show Assured for individual client accounts.
User Status	Identifies if the user account is Active or Inactive.
Last Modified By	Displays the name of the last user to change the user account.
Last Modified On	Displays the last date and time the user account was changed.
Security Role	Displays a single role that is assigned to the user, or that the user can assign to accounts.
Role Type	Identifies how the role is available to the user.
Assigned	The role has been assigned directly to the user, giving them access to the features and options controlled by that role.
Assignable	The user can assign the role to user accounts.

Individual entries exist for each unique combination of role, type, and user information.  The report can be sorted and filtered using the standard Excel controls.