User Management

Manage users, roles, and access across your Twig AI organization.

Overview

User management in Twig AI allows you to:

Add and remove users
Assign roles and permissions
Organize users into groups
Monitor user activity
Control resource access

Adding Users

Individual User Creation

Navigate to Administration → Users
Click Invite User
Enter details:
- Email: [email protected] (required)
- Name: Full name (optional)
- Role: User, Manager, Admin, or Super Admin
- Groups: Assign to groups (optional)
Click Send Invitation
User receives email with setup link

Bulk User Import

Administration → Users → Import Users
Download CSV template
Fill in user information:

Email,Name,Role,Groups,Status
[email protected],John Doe,MANAGER,"Support Team|Tier 2",ACTIVE
[email protected],Jane Smith,USER,"Support Team",ACTIVE

Upload CSV
Review preview
Confirm import

SSO Auto-Provisioning

Enable Just-In-Time (JIT) provisioning:

Administration → SSO → Auto-Provisioning
Enable JIT provisioning
Configure:
- Default role: User
- Attribute mapping (email, name, groups)
- Auto-create groups: Yes/No
Users created automatically on first SSO login

User Roles

See User Permissions & Roles for complete details.

Quick Reference:

Role

Can Create Agents

Can Edit All Agents

Can Manage Users

Can View All Analytics

Super Admin

✅

Admin

✅

Manager

✅

Own only

Group only

User

❌

Self only

Managing Users

Viewing Users

User List shows:

Name and email
Role
Groups
Last login
Status (Active/Inactive)
Actions

Filters:

By role
By group
By status
By last login date

Editing Users

Click on user
Modify:
- Name
- Role
- Groups
- Status
Save changes
User notified (optional)

Changing Roles

Select user
Click Change Role
Select new role
Confirm impact warning
Save

Effect: Immediate permission changes

Deactivating Users

Temporary deactivation:

Select user
Click Deactivate
Confirm

Effects:

Cannot log in
API keys disabled
Removed from groups temporarily
Data preserved

Reactivation:

Select deactivated user
Click Activate
Restore group memberships

Deleting Users

⚠️ Permanent action

Select user
Click Delete
Choose deletion mode:
- Soft Delete: Hide user, keep data
- Hard Delete: Remove completely
Confirm with admin password
User removed

Group Assignment

Adding to Groups

Individual:

Open user profile
Go to Groups tab
Click Add to Group
Select group(s)
Save

Bulk:

Select multiple users
Bulk Actions → Add to Group
Select group
Confirm

Removing from Groups

Open user profile
Groups tab
Click X next to group name
Confirm removal

User Activity Monitoring

Activity Dashboard

User: [email protected]
├─ Last Login: 2 hours ago
├─ Queries (24h): 45
├─ Most Used Agent: Support Agent
├─ Avg Response Time: 1.8s
├─ Failed Auth: 0
└─ Status: Active ✅

Activity Logs

Track user actions:

Logins and logouts
Agents used
Queries asked
Resources accessed
Configuration changes
Failed attempts

Anomaly Detection

Auto-alert on:

Login from new location
Unusual query volume
Failed auth attempts (5+)
Access to sensitive resources
Off-hours activity (configurable)

Best Practices

1. Onboarding

✅ Standard onboarding checklist ✅ Role assignment based on job function ✅ Group assignment from day 1 ✅ Security training required ❌ Don't grant broad access initially

2. Offboarding

✅ Deactivate immediately on departure ✅ Remove from all groups ✅ Revoke API keys ✅ Transfer ownership of resources ✅ Export user data if needed ❌ Don't delay deactivation

3. Regular Reviews

✅ Quarterly access review ✅ Remove inactive users (90+ days) ✅ Verify role appropriateness ✅ Update group memberships ❌ Don't let permissions accumulate

4. Principle of Least Privilege

✅ Start with User role ✅ Escalate only when needed ✅ Time-limit elevated access ✅ Document justification ❌ Don't make everyone Manager/Admin

Troubleshooting

Check:

Account is active
Correct email/password
MFA code valid
No account lockout
SSO configured properly

User Missing Permissions

Check:

Correct role assigned
Part of appropriate groups
Permissions haven't been revoked
Session refreshed (logout/login)

Bulk Import Failed

Check:

CSV format correct
No duplicate emails
Valid role names
Groups exist
Check error log for details

Next Steps

User Permissions & Roles - Permission details
Group Management - Organize users
Agent Permissions - Control agent access
SSO Integration - Enterprise auth

PreviousOrganization Settings NextUser Permissions & Roles

Last updated 7 hours ago

hashtagOverview

hashtagAdding Users

hashtagIndividual User Creation

hashtagBulk User Import

hashtagSSO Auto-Provisioning

hashtagUser Roles

hashtagManaging Users

hashtagViewing Users

hashtagEditing Users

hashtagChanging Roles

hashtagDeactivating Users

hashtagDeleting Users

hashtagGroup Assignment

hashtagAdding to Groups

hashtagRemoving from Groups

hashtagUser Activity Monitoring

hashtagActivity Dashboard

hashtagActivity Logs

hashtagAnomaly Detection

hashtagBest Practices

hashtag1. Onboarding

hashtag2. Offboarding

hashtag3. Regular Reviews

hashtag4. Principle of Least Privilege

hashtagTroubleshooting

hashtagUser Can't Login

hashtagUser Missing Permissions

hashtagBulk Import Failed

hashtagNext Steps

Overview

Adding Users

Individual User Creation

Bulk User Import

SSO Auto-Provisioning

User Roles

Managing Users

Viewing Users

Editing Users

Changing Roles

Deactivating Users

Deleting Users

Group Assignment

Adding to Groups

Removing from Groups

User Activity Monitoring

Activity Dashboard

Activity Logs

Anomaly Detection

Best Practices

1. Onboarding

2. Offboarding

3. Regular Reviews

4. Principle of Least Privilege

Troubleshooting

User Can't Login

User Missing Permissions

Bulk Import Failed

Next Steps