Section |
Description |
User Contextual Rules Configuration |
- Contextual security allows admins to set rules on data access roles so that, for example, supervisors only see data within their own scope. One Model works to create a supplemental table to which employee data can link to and define who and what data a specific employee should be seeing.
- This section is updated by the data engineer while configuring the contextual table
- While admins won't update this section, it allows them to see how contextual security links back to main data
- Please refer to Contextual Security Rules for Data Access Roles help article for more information about contextual security
|
Password Policy |
- If username/passwords are used to log in, customer admins can define whether or not users can re-use old passwords when resetting them.
- Customer admins can also configure whether or not passwords will expire for their users, and how many days before a user’s password will expire
|
Session Timeout Period |
- Customer admins can define how many minutes of idle activity after which a user's session will be deactivated. The default is set to 30 minutes.
|
SAML 2 Integration |
- While customers can have their users sign in the traditional fashion of a username and password, One Model does support single-sign on for a smoother user experience.
- The SAML 2 Integration section is where customer admins and their IT team can configure single-sign on within One Model.
- It is also where automated role assignment via SSO is configured, though we recommend that customers consult with a member of the Customer Success team prior to working through the process
- You can start by clicking Add SAML2 Integration and then adding in the necessary components based on your authentication system
- Please refer to the following help articles for more information:
|
User Upload Options |
- Customer admin have the option using a file-based bulk user upload to assign application and data access roles to their users
- While customers may decide to manually create users instead, this may be a preferred approach if customers have a large number of users who will need access to the site
- We recommend that customers consult with a member of the Customer Success team prior to working through the process
- Please refer to the File based user upload & automatic role assignment help article for more information
- NOTE: Customer Supplied Roles can also be shared over via SSO, which further automates the process by eliminating the need to upload a file, though this depends on the authentication system being used. Again, if a customer is interested in this, they should consult with a member of the Customer Success team.
|
Export Formatting Options |
- Admin users can add separator info to CSV exports (based on what they select/input in the next section), if they’d like to do so.
|
Value Formatting Options |
- Customer admins can define:
- Date Format (relates to values in additional columns, not time period dimensions)
- Date & Time Format (relates to values in additional columns, not time period dimensions)
- Currency Symbol (relates to metrics, not additional columns)
- Decimal Separator (relates to metrics, not additional columns)
- Digit Separator (relates to metrics, not additional columns)
- Whether or not the digit separator is enabled (default is set to have it enabled)
|
PGP Configuration |
- PGP stands for Pretty Good Privacy, and is an encryption method for securely sharing sensitive files using a PGP key pair.
- This section allows customer admins to set up PGP with One Model if they’d like to encrypt flat files before sending them over to their site
- Please refer to Setting Up PGP help article for more information
- NOTE: If you create a new key in the future, the old key pair will be removed and will no longer work, so any encryption scripts will need to be updated with the new key.
|
Logout Redirect Options |
- Admin users can change where the “Log Off” button directs users when they log out, if they’d like to.
|
Help Options |
- Similarly to the Logout Redirect Options section, Admin users can change where the "Help" tab in the toolbar directs users when they click it if they’d like to.
|
Allowed IPs |
- In this section, admin users can define which IP addresses should be allowed access to the One Model site. Effectively, admin users can set restrictions to IP addresses to ensure only certain users can access One Model.
|
Embedding Options |
- Customers have the ability to embed storyboards in other systems, such as their intranet systems.
- This section needs to filled out in order to allow One Model storyboards to be embedded
- Please refer to How to Embed Storyboards help article for more information
|
Column Link Options |
- This section relates to deep linking.
- By default, when a user clicks on a deep link, a popup will appear to confirm if they’d like to go to where the link is set to take them. Admins can disable the popup from this section.
|
Default Chart Palette |
- The "Chart Palette" is the colors, and the order of colors, that’ll appear by default in visualizations. Admins can change these colors, and their order, in this section if they’d like.
|
Comments
0 comments
Please sign in to leave a comment.