What is a system user?

System users are users who have all function and access privileges in a database and who have the required privileges in the ARIS Administration. System users can be created by the system administrator (user system) or by another system user.

System users are users who have all function and access privileges in a database and who have the required privileges in ARIS Administration. System users can be created by the system administrator (user system) or by another system user. The system user system is created automatically. The name system cannot be changed. A system user should immediately change the password manager in ARIS Administration to prevent unauthorized access. The function and access privileges of system users cannot be changed at database level. To withdraw privileges from a system user, another system user must disable the System user check box on the former user's Function privileges properties page. As a result, the user's privileges can be changed. After this, the user has no access privileges.

The system user is created automatically. By default, the system user has all function privileges. This user can log in to Process administration Process administration, ARIS Administration and User Management. In ARIS Architect and ARIS Designer, this user has all access privileges for all database groups of all databases. This user only uses up a license if a license privilege is activated for this user. The default password is manager. You should change the default password to prevent unauthorized access. You can change all user data except for the user name.

Having more than one system user can avoid problems, if, for example, your single system user has forgotten his password. You can create additional system users or copy the existing system user. If your only system user was deleted accidentally, create a new one by using the superuser. The user can only be deleted individually. Enable the Generate, if not available option (Application launcher Application launcher > Administration Administration > Configuration > User management > Users >) so that the user is automatically generated again at startup with the last saved password.

The system user system is created automatically. This user has full access to all databases of a tenant. The name system cannot be changed. A system user should immediately change the password manager in ARIS Administration to prevent unauthorized access. The function and access privileges of tenant-wide system users cannot be changed at database level. To withdraw privileges from a system user of a single database, another system user must disable the System user check box on the user's Function privileges properties page in ARIS Architect. As a result, the user's privileges can be changed. After this, the user has no access privileges.

The system user system assumes the administrator role of the system administrator and has all function and access privileges in all databases of a tenant. Authorized persons can use this emergency user to log in to any database, even if you are using an external system, such as LDAP, for authentication.

The administrator roles described in the following are defined via various privileges at the server and database level. Depending on the roles assigned to the administrators they can carry out specific functions.

superuser

The user superuser is created automatically. By default, this user is assigned the User management, License management, and Configuration administrator function privileges. This user can also enable this function privilege for other users. Users of the superuser type do not use up a license. They manage the system administration, but cannot use ARIS products due to license restrictions. The default password is superuser. You should change the default password to prevent unauthorized access. The password of the superuser is very important, as it is the only user who cannot be deleted. You can change all user data except for the user name. The superuser can recreate the other default users (system, arisservice, guest) if they were deleted.

system

The system user system assumes the administrator role of the system administrator and has all function and access privileges in all databases of a tenant. Authorized persons can use this emergency user to log in to any database, even if you are using an external system, such as LDAP, for authentication.

The name system cannot be changed. The System user check box for this user (Function privileges properties page in ARIS Architect) cannot be disabled either. You should immediately change the password manager to prevent unauthorized access.

To avoid problems, you should create additional system users. Having more than one system user can avoid problems, for example, if one system user has forgotten his password. If you forgot the passwords of all your system users, the full range of functions is no longer available and full data access is no longer possible.

The following administrator roles are defined:

Database administrators

Database administrators require the Database administrator function privilege in ARIS Administration. Users with this role have all function and access privileges and can edit data of all databases of the client.

Database administrators perform the following tasks at the server level:

Users with defined function privileges can perform additional actions at the database level.

Configuration administrators

A Configuration administrator requires the Configuration administrator function privilege in ARIS Administration.

They perform the following tasks:

Script administrators

Script administrators require the Script administrator function privilege in ARIS Administration.

Script administrators perform the following tasks:

Analysis publisher

Analysis publishers require the function privilege of the same name in ARIS Administration.

Analysis publishers perform the following actions:

Analysis administrators

Analysis administrators require the function privilege of the same name in ARIS Administration.

Analysis administrators perform the following actions:

The name system cannot be changed. The System user check box for this user (Function privileges properties page in ARIS Architect) cannot be disabled either. You should immediately change the password manager to prevent unauthorized access.

To avoid problems, you should create additional system users. Having more than one system user can avoid problems, for example, if one system user has forgotten his password. If you forgot the passwords of all your system users, the full range of functions is no longer available and full data access is no longer possible.