Enabling self-registration

You can allow new users to self register to immediately allow them basic access, without having to first set up each new user. Self registration can be done via a button on the login screen and/or by invitation. Self-registered users will start out with a basic configuration that you can control yourself, and can adjust afterward. Your Security Admin will be notified of each new self-registered user. By default any new user needs to be approved, but you can opt for a more lenient or strict registration approval process.

Note:
The self-registration feature is behind a feature flag. Please contact Customer Support via the Customer Support Portal if you want to have a flagged feature activated.

 

Chapters on this page:

Setting up self-registration

Before you enable either one of the self-registration options, you first need to define what permissions self-registered users will start out with. You determine this initial configuration yourself, by defining a "template user". Although all new self-registered users will start out with the configuration of that template user, you are free to adjust their permissions and configuration.

Defining initial user configuration

Start by creating a template user with the permissions that you want self registered users to have. You can use an existing user or create a new user for this specific purpose.

  1. On the main navigation column, select Administration
  2. On the navigation column, point to Security, and click Users
  3. Select a user or follow the steps in Creating a User. We suggest naming the user "Self-registration template user", so your team can easily identify the user if changes need to be made.
  4. Make sure this user has the desired domain rights and configuration that you want self-registering users to have when they enter your system.
  5. Is the user all set up? Click Mark as template user when viewing the user in read mode,
Note:
The following users cannot be marked as template user: Admin, Security Admin, DAM Operations and Service User.

Changing the template user

Only one user can be designated as the template user. If you wish to change the template user, just mark another user as the template user. All users that register from then onwards, will follow the configuration of this new template user (except for the DAM UI Language and DAM Content Language currently). The configuration and permissions of previously self-registered users will not be affected when you change the template user. The same applies to changes in the configuration of the template user.

Enabling self registration through the login screen

To allow users to self-register through the Register button on the login screen, set the Allow Self Registration from Login Page system parameter to Yes. The default is No.
Anyone who clicks Register, can fill out basic registration fields on the Registration page and request an account.

After the request has been approved by your security administrator, the user will receive an email that allows the user to activate the account. This email will be sent to the email that the user entered during registration. After the user activates the account, the user can log on.

For more information about the approval process, please see Approval process.

Enabling sending out self-registration invites

The second way someone can create an account through self registration, is by invitation.

When the Allow Self Registration through Invite Links system parameter is set to Yes, authenticated users can generate an invitation link via their account menu. They can share this invitation link to others, for instance per email, to invite them to sign up and start using the system. The invitation link is personal, Aprimo can be contacted to trace who has sent out invitations, if necessary.

  1. Someone who receives an invite to self-register can fill out basic registration fields on the Registration page and request an account. By default, invitation links expire after 1 day. You can adjust the expiration period in the Invite Link Expiration Period (Days) system parameter, where you can choose a period ranging from 1 to 90 days.
  2. Once the user submitted the registration request, the approval process starts. For more information, please see Approval process.
  3. This will trigger an email with a request to activate the account. The email will be sent to the registered email address. By default, an account activation link will expire after 7 days. You can adjust the expiration period in the Activation Link Expiration Period (Days) system parameter, where you can choose a period ranging from 1 to 90 days.
  4. After the user activates the account, the user can log on.

Information for users about inviting users can be found on Inviting new users.

Restricting self-registration

By default, users cannot self-register. When you enable self-registration, you can control who can sign up and gain access to the system by specifying a list of allowed email domains in the Allowable Domains for Self Registration system parameter. Users who enter an email address from a disallowed domain, will be warned and won't be able to register with that address. If no domains are specified in this setting, anyone is permitted to self-register.

Enabling system parameters

  1. On the main navigation column, point to Administration
  2. On the navigation column, point to Configuration, and click System Parameters
  3. Enable the self-registration options mentioned in this chapter, based on your business needs.

 

Approval process

To guard your environment, each new self-registered account will need to be approved before the user can activate the account. You can opt for a more lenient or more strict approach by changing the registration approval setting.

This works as follows:

  1. When someone submits a registration request, your security administrator will receive an invitation to review the new registration request. This invitation is sent per email and in-app notification.
  2. The administrator can approve or reject the registration request on the User Activation page. This page can be reached through a link on the invitation.

  3. If the administrator rejects the request, the user will receive a notification. Rejected users need to contact their business contact before attempting to register again.

  4. If the administrator approves the registration request, the user will receive an activation email that invites the user to activate the new account.

Registration approval setting

The default configuration is to require approval for all self-registrations. You can opt for a more lenient or more strict approach by changing the Registration Approval Setting system parameter.

Please see the system parameter description for the options,Self Registration.

User Activation page

As a security administrator, you can access the User Activation page. On the Pending tab, you'll see all registration requests pending for review. The History tab shows the list of requests that have been reviewed.

Finding self-registered users and template user

Finding the template user

To identify the template user account for self-registration on your environment, look up the ID in the Self Registration Template User system parameter. You'll be able to find the user when you filter on ID in the Users administration.

Finding self-registered users

When a new user has registered the Security Admin will receive a notification with a link to the user account.

To get a list of self-registered users, filter on Self Registered in Users in the security administration.