Password server actions

Create Person assets

When a new user logs in for the first time, censhare creates a person asset for this user. The asset ID of this person is written into the user profile in the master data. The person asset stores personal data, contact data, and the user preferences. The person asset does not store any sensitive data such as user credentials!  Users can access their person asset in the user menu and edit their data and preferences.

The Create Person assets server actions allows you to create the person assets for users that have not yet logged in manually, or whose associated person asset was deleted for other reasons.

To configure the server action, do the following:

1. In the censhare Admin Client go to Configuration/Modules/Administration/User.
2. Open the Create Person assets configuration.
3. The server action is enabled by default. To disable it, deactivate Enabled (not recommended).
4. In the Permissions only for defined default roles, you can select a role that administrators must have to execute the action.
5. In the Permissions only for defined client types, the censhare Admin Client is preselected. Do not change this! This action can only be executed in this client.
6. In the Permissions only for defined permission keys, you can select dedicated permission keys that administrators must have to execute the action.
7. Click OK to save your changes.

Delete Password

Security risk!

This server action is disabled by default.  
If it was enabled in your previous installation, it is disabled with the update to this censhare version.

Enabling this action allows administrators to create users with empty passwords, and these users to log in to censhare without a password!

To configure the server action, do the following:

1. In the censhare Admin Client go to Configuration/Modules/Administration/User.
2. Open the Delete password configuration.
3. The server action is disabled by default. To enable it, activate Enabled.
4. In the Permissions only for defined default roles, you can select a role that administrators must have to execute the action.
5. In the Permissions only for defined client types, the censhare Admin Client is preselected. Do not change this! This action can only be executed in this client.
6. In the Permissions only for defined permission keys, you can select dedicated permission keys that administrators must have to execute the action.
7. Click OK to save your changes.

Send new password

This server action requires that a mail server is set up on the censhare server host, so that the system can send e-mails. 

This server action allows administrators to send a new temporary password to users if their password (temporary or permanent) expired, or if they forgot their password.

To configure the server action, do the following:

1. In the censhare Admin Client go to Configuration/Modules/Administration/User.
2. Open the Send new password configuration.
3. The server action is enabled by default. To disable it, deactivate Enabled.
4. In the Permissions only for defined default roles, you can select a role that administrators must have to execute the action.
5. In the Permissions only for defined client types, the censhare Admin Client is preselected. Do not change! This action can only be executed in this client.
6. In the Permissions only for defined permission keys, you can select dedicated permission keys that administrators must have to execute the action.
7. In the Special setup area, configure the e-mail to be sent:
   • As Account, enter the account from which the e-mail is sent. Default is the corpus account.
   • As Subject, enter the e-mail subject.

   • As Content, enter the e-mail body. You can use basic HTML and the following placeholders:

     Placeholder	Description
     %password%	The automatically generated temporary password.
     %expireDays%	The days left until the temporary password expires.

8. Click OK to save your changes.

Send new password (automatic)

This server action requires that a mail server is setup on the censhare server host, so that the system can send e-mails. 

This server action is triggered and sends a temporary password if a new user is added to the Master data/Users table AND if this new user matches the following conditions:

• Not a system user
• Is not disabled
• External authentication is not selected
• An e-mail address exists for the user
  

To configure the server action, do the following:

1. In the censhare Admin Client go to Configuration/Modules/Administration/User.
2. Open the Send new password (automatic) configuration.

3. As Server Name, select the desired server.

   

   This server action may only be configured on one server (usually the master)!

4. The server action is enabled by default. To disable it, deselect the Enabled field.
5. In the Special setup area, configure the e-mail to be sent:
   • As Account, enter the account from which the e-mail is sent. Default is the corpus account.
   • As Subject, enter the e-mail subject.

   • As Content, enter the e-mail body. You can use basic HTML and the following placeholders:

     Placeholder	Description
     %password%	The automatically generated temporary password.
     %expireDays%	The days left until the temporary password expires.

6. Click OK to save your changes.