Tag Archives: Users and Groups

Categorize staff for function access & communication

Store information about company personnel, give them access to specific MR9 functions, and communicate with groups of personnel at once

Lesson #113
Setup – Users and Groups function

You can run MR9 as a single user, but if you have other in-house personnel who need access to your MR9, set them up as users. Then give them user names and passwords to access MR9, and store work-related and personal information about them. Group them according to their access levels and job functions, so they can perform their jobs and receive internal messages, but not access areas of MR you do not want them to use. 

Each MR9 user needs a license to gain access to the application. Although account sharing is allowed, our recommendation is for each user to have their own unique Named User License for security, data integrity, and auditing purposes.

Groups give users defined access

User account administration is a critical stage of your setup phase as it allows you to bolster your security posture by managing the access each of your users has within RB9. Users and Groups is the tool you use to manage MR9 users, individually and grouped according to permissions, rights, and notifications. There are 2 default groups in MR9:

  • Administrators – grants group members full access to all areas of MR9.
  • Users – basic group every MR9 user is part of and grants them limited access to only essential areas of MR9.

The initial user of your MR9 system is designated as an administrator so they can enter other users and grant them permissions. They can add other users to the Administrators group, and anyone who is an administrator in MR9 can perform the same functions. There is no limit to how many administrators your system can have. We recommend maintaining at least two members in the Administrators Security Group to ensure that if one admin is locked out, the other can quickly restore their access.

Security Groups

This feature enables precise permission management, ensuring users have the exact access required for their roles. By limiting exposure to sensitive information, administrators can effectively maintain data integrity across the organization.

Security Groups can be created with well-defined permissions to limit group members’ access to specific functions. For example you could set up an Orders group, in which you give access to all Orders functions in MR9 and maybe some select functions in other modules, such as the repository and entities.

When setting up a new group, the only required information is the Group Name. Other information you can add to a group is a group description, group members (MR9 users), and security permissions/function access.

There are 2 levels to security permissions:

  1. Simple access — Users in the group can search and view information, i.e., a read only level.
  2. Comprehensive access — Users can also edit and delete information.

Most functions offer comprehensive access only, but in some functions you can limit access to read only. Functions that offer both access levels are generally more critical areas, such as orders, parts, and invoices, which you might want to allow some users to view, but not change.

In addition to setting up Security Groups administrators can:

  • Add or delete users from each group (one user, several, or all users at once) — MR9 indicates which users are active making it easy to remove unnecessary group members.
  • Change which functions are accessible in a group (except the Administrators group).
  • Delete groups (except the Administrators and Users groups).

Users can be members of more than one group, so you do not have to have a lot of groups to cover every option. If someone’s responsibilities overlap different areas, such as someone who oversees both calendaring and billing, administrators can give that person access to both areas through membership in multiple Security Groups.

While members of the Administrators group have all of the capabilities described by default, they can also grant members of other Security Groups the same capabilities if desired. Due to the sensitivity surrounding user account administration, access to the Users and Groups function should be limited to those belonging to the Administrators Group only.

Message Groups

In addition to Security Groups, MR9 also has Message Groups, which allow you to send a message to all the members of a group simultaneously. Members of a Message Group can also send messages to the group. There are no required Message Groups, nor are users required to be a member of any Message Group to use MR9.

Similarly to Security Groups, the only requirement when setting up a Message Group is a group name. Administrators can also add a group name, and add or delete members. Administrators can edit or delete existing Message Groups.

With either group you can sort the list by one or more columns in ascending or descending order (but when you exit the function, MR9 will revert back to the default order).

Adding users

When you open the Users and Groups function it lists all of the users who are already entered into your MR9 system — along with their user name, email address, whether they are an active user, and when they last logged into the system. You can sort the list by one or more columns in ascending or descending order (but when you exit the function, MR9 will revert back to the default order). You can also export the list as an Excel spreadsheet or a CSV (comma-separated values) file to save, print, share, or use in other applications.

Administrators can add users to MR9 at any time. When entering a new user, the only required information is their full name, MR9 login name, and password. When saving a new user MR9 will prompt you to tie them to your company’s business units (BUs). You can tie them to one or more of your company’s BUs.

Even though it is not required, we recommend you include the user’s email address in their listing as it is important for password reset emails, Notifications and Messages, and 2-step verification at log-in.

If you are using email addresses as user login names, you will be required to enter the user’s email address instead of a login name. We recommend this option because everyone knows their email address, so it is easier for them to remember than a unique user name for their MR9 user ID. The option to use email addresses for MR9 login is a general system preference.

General information

In addition to required information you can store users’ contact information — such as their work email address, and other work related information, including their work phone number, start date/termination date, title and department (which you choose from lists you customized in the Lists function), the user’s supervisor, and any information you want to include that is not covered elsewhere in the user’s listing.

In addition to storing info about the user, this is also where administrators can:

  • Reset the user’s password for them if they forgot their password and don’t want to change it themselves (administrators do not have a way to retrieve passwords).
  • Let the user back into MR9 if they got locked out for making too many incorrect attempts to log in (using the wrong user name and/or password). Administrators set how many tries users get to log in correctly before being locked out in System Preferences.
  • Deactivate the user if they no longer work for the company or otherwise don’t need to be assigned or contacted anymore. Deactivated users can no longer log into MR9, and their names will not appear in the system by default.
  • Delete a user if they never did anything in the system. MR9 tracks and logs user interactions so if someone has added or updated information in MR9, they cannot be deleted from the system because their interactions are part of your audit trail.

Personal info

Personal information about a user includes their home address, date of birth, and personal phone numbers. When entering the user’s street address or P.O. box number, skip the other fields and enter the zip code. MR9 will fill in the city, state, and country for you. After entering the user’s address you can view maps and directions to it in MR9.

Pay Info

If the user you’re setting up is a Sales Rep, specify their Commission Rate so it will be included when calculating invoices.

After saving a new user, 2 other panes appear in their listing: Groups and Business Units. Groups will have the default Users group listed, and Business Units will list any BUs you tied to the user. You can add or delete groups and business units you want to associate with the user here.

Who gets MR9 access?

Clients who need access to their information in your system are not the same as MR9 users who are your staff, managers, or other company personnel who need access on a more global level. If you want to give your clients access to their orders, financial info, files, and other relevant info, add MR Connect to your MR9 system where they can have their own online MR9 offices automatically populated with their information exclusively.

TL;DR: Store work and personal information about company personnel. Give them access to specific functions in MR9 through Security Groups. Communicate internally with multiple users at once through Message Groups.

MR9 concepts in this lesson

Business Unit (BU): One of your company’s revenue centers or any entity in your business that you want to track separately.

MR Connect: Online repository, orders, and access to your office for clients and others. More >

Named User License: Each MR9 user needs a license with their own user ID and password to gain access to the application. 

Listed under Function, Lesson, Setup | Tagged , ,