8. Access Management

fmUserAccess fmUserEdit fmRoleEdit

To grant access to your Store database to another person, who does not have administrative rights, register a new role, and specify the rules by which your employees can manage data.

To use the Access Management feature - choose the selection, illustrated below, in the top menu bar of Store Manager, and click on the indicated button -

Access Management button

Next, select from the drop-down list, the 'Users and Permissions' option.

Users and Permissions

A warning message dialog will appear. To proceed, select 'Yes'.

Warning message

By default, you will have Administrator rights (login and password at startup are 'admin'). To add other Users, and provide them with appropriate access to your Store data, select the option 'Add Role'.

Open the 'Roles' tab, and press the 'Add' button. Specify the 'Role Name', in the subsequently displayed Form.

Roles tab Add button

Typical examples are Manager, Senior Manager, Operator, or Seller, etc.

Select 'OK' , to save your entry.

Role Name

Un-check the 'Administrator rights' check box, to set special permissions for the current role.

Un-check field 'Administrator rights'

Specify what features will be available to the newly created role (viewing, modification, or both). You may also manage already existing roles (add, or remove access details, delete roles from a list, or create additional roles, and, or, permissions).

Permissions for new role

You may also change the default username, and, or, password, by pressing the 'Edit' button, located on the toolbar.

Once a role has been created - you can proceed to add a new User and assign it to an appropriate role. Select the "Users" tab, and press the 'Add' button. In the form which appears, complete the required information:

Specify the username, set and confirm the password, choose the User's Account status (active or inactive), etc.).

Add new user form

You may also change Role details, by simply choosing the relevant option, from the drop-down list:

Change role

By assigning Roles to Users, you assign permissions to Users, that have been prior set up, for the role. E.g., if the role 'Manager' has permissions to only view certain options, like 'Custom Reports', 'FTP Queue', 'Attributes',but

not modify them (not edit, add, delete, import or export), then the User 'Nata', who has been assigned the role of Manager, will only be able to view (not modify) these options, but will be able to view, and modify, the other options:

Check fields with permissions

Once a Role and User are established in Store Manager, you may check the new Account's status, by switching from the User, 'Administrator', to the newly created User. In the top menu bar of the program,

Access management button

press the button, and open the drop-down list of commands. If 'Logout' is selected, a message requesting confirmation of your actions appears.

Logout command

After pressing 'Yes', in the resultant pop-up window, you will be able to login to the new Account, in the corresponding form.

Login to SM form

Every time a User launches Store Manager, he/she should specify a 'Username' and 'password', in the registration form, to be able to enter and work within the program. Note that the Access Management feature is primarily used

to assign permissions for managing your Store, within Store Manager. If you need to specify limited (non-administrative) rights to Users, in the back-end, as well, access the 'Admin' Panel.

To disable Access Management, in Store Manager, click on the relevant button, within the drop-down list.

Remove Protection

Subsequent to this action, anyone will be able to work within the program, even without providing identification, with 'Administrative' rights, and permissions, assigned by default.

Check the following article, for more information pertaining to Access Management functionality, in Store Manager for Magento:

How to Enhance Security of Your Magento Store


The next video tutorial could be helpful to preview how to configure different permissions for different users via Access Management section: