Users

The Users module provisions portal users through the identity management API. Bank administrators create accounts without manual identity console access.

Overview

User onboarding connects Kwik Vault portal access to the bank's identity governance. Users receive department assignments and approver roles mapped from identity provider claims.

Key Features

• API-driven provisioning: Create portal users from the Vault Admin UI.
• Identity provider integration: Users are provisioned in the institution's identity system.
• Department and role mapping: Assign departments and approver permissions during onboarding.
• Automated bootstrap: Non-production environments complete identity setup automatically on first run.

Implementation

Step 1: Verify identity API status

1. Open Users from the sidebar.
2. If the page shows Identity management API not configured, contact your platform administrator to complete identity setup.
3. Refresh the page after setup completes.

Step 2: Create a portal user

1. Enter the user's email, display name, and login credentials.
2. Assign Department and role (including Approver if applicable).
3. Submit to provision the account.
4. The user signs in via Login with corporate SSO or domain credentials.

Step 3: Manage existing users

1. Review the user list with department and role assignments.
2. Update permissions as organizational structure changes.
3. Deactivate users who no longer require vault access.

Benefits

• Self-service admin: Bank IT provisions users without vendor intervention.
• Centralized governance: Approver roles and department scope follow identity provider claims.
• Auditability: User provisioning events appear in the identity audit log.

Next Steps

• Operations Guide: first-time department onboarding checklist
• Login: how provisioned users authenticate
• Approvals: approver role requirements
• API Keys: separate service user management for integrators
• Architecture: identity and access model