Users
The Users settings page lets you manage everyone who has access to your Guardian Pro organisation. You can view the current user list, check their roles, and remove users who no longer need access.
Accessing User Management
Navigate to Settings > Users from the left sidebar. You need the users:read permission to view the user list and users:write to make changes.
User List
The Users page displays all users in your organisation with the following information:
| Column | Description |
|---|---|
| Name | The user's full name |
| The email address associated with their account | |
| Role | Their assigned role: Admin, Standard, or Read-Only |
| Status | Active, Invited (pending acceptance), or Disabled |
| Last Login | When the user last signed in to Guardian Pro |
| Date Added | When the user was added to the organisation |
Filtering and Searching
Use the search bar to find users by name or email. You can also filter by:
- Role -- Show only Admin, Standard, or Read-Only users.
- Status -- Show only Active, Invited, or Disabled users.
Adding Users
New users are added through the Invitations process. Click the Invite User button on the Users page to send an invitation email.
The invitation workflow:
- Enter the new user's email address.
- Select the role to assign (Admin, Standard, or Read-Only).
- Click Send Invitation.
- The user receives an email with a secure, time-limited link to create their account.
For details on the invitation process, see Invitations.
You can invite multiple users at once by entering multiple email addresses separated by commas. All invited users will receive the same role assignment, which can be changed individually after they accept.
Changing a User's Role
To change a user's assigned role:
- Find the user in the user list.
- Click the role badge or the Edit icon next to their name.
- Select the new role from the dropdown.
- Confirm the change.
The new permissions take effect immediately. The user does not need to sign out and back in -- their next action will use the updated permissions.
You cannot change your own role. Another Admin user must make the change. Every organisation must have at least one Admin user at all times.
For a detailed breakdown of what each role can do, see Roles and Permissions.
Removing Users
To remove a user from your organisation:
- Find the user in the user list.
- Click the Remove icon (or select Remove User from the actions menu).
- Confirm the removal in the dialog.
When a user is removed:
- Their access is revoked immediately.
- Their authentication credentials are invalidated.
- Any pending invitations from that user remain valid.
- Historical activity by that user (remediation actions, scan triggers, etc.) is preserved in audit logs.
Removing a user is immediate and cannot be undone. The user will need a new invitation to regain access. Their historical actions remain in the audit trail for compliance purposes.
Disabling Users
Instead of permanently removing a user, you can disable their account. Disabled users cannot sign in, but their account remains in the system and can be re-enabled later.
To disable a user:
- Find the user in the user list.
- Click the Disable option from the actions menu.
- Confirm the action.
To re-enable a disabled user, follow the same process and select Enable.
User Limits
The number of users you can have in your organisation depends on your subscription tier:
| Tier | User Limit |
|---|---|
| Starter | Up to 5 users |
| Business | Up to 25 users |
| Enterprise | Unlimited users |
If you have reached your user limit, you will need to remove existing users or upgrade your subscription before adding new ones. See Subscription for upgrade options.
Security Considerations
Guardian Pro enforces several security measures for user accounts:
- Rate-limited authentication -- Repeated failed login attempts temporarily lock the account to prevent brute-force attacks.
- Encrypted tokens -- All authentication tokens are encrypted and time-limited.
- Session management -- Sessions expire after a period of inactivity and require re-authentication.
Guardian Pro uses secure, industry-standard authentication. All credentials are encrypted in transit and at rest. For organisations requiring SSO or federation, contact Support to discuss Enterprise options.
Next Steps
- Invitations -- Learn how the invitation and onboarding process works for new users.
- Roles and Permissions -- Understand what each role can access and modify.
- Organisation -- Manage your organisation-level settings.