Business Partner only: Restricting organization access

Edit online

If your organization is an IBM Business Partner that manages multiple clients in IBM® Envizi ESG Suite, you can restrict client access in Envizi ESG Suite for users in your organization.

About this task

Disclaimer: The following procedure, which describes how to restrict client access to organizations, is intended only for Envizi ESG Suite Business Partner users who are responsible for managing client access control within their organizations. If you are a Business Partner user who has a legitimate need to manage client access, ask your Envizi ESG Suite contact to enable the feature for you.

If you are a direct client of Envizi ESG Suite, for information about setting up contacts and logins, see Creating contacts and logins.

In a contact's Login Organizations page, if you do not specify any organizations that a contact is entitled to access, by default the contact has access to all client organizations that your organization services.

Procedure

  • To restrict a contact's access to one or more specific organizations, do the following steps for each organization that the contact is entitled to access:
    1. Go to the Contact Login page:
      • In Envizi ESG Suite, click Manage > Contacts & Logins.
      • In the Envizi ESG Suite Partner Portal, click Setup > Contacts & Logins.
    2. In the Contacts & Logins page, select a contact, right-click, and click Login .
    3. In the Contact Login page, select a contact login, right-click, and click Restrict Organization(s) .
    4. In the Login Organizations page, click Add Login Organization, select an organization that the contact is entitled to access, and then save.
  • To delete an organization from a contact, in the contact's Login Organizations page, select the organization, right-click, and click Delete Login Organization(s).
    If an organization record's Updated By field displays System Locked, the record is managed by admin users in the Envizi ESG Suite Partner Portal. Only admin users can modify or delete the records in the Envizi ESG Suite Partner Portal.
    If the contact has access to only one organization and you delete the organization from the contact's Login Organizations page, by default the contact has access to all client organizations that your organization services.

Results

Any changes to the login organization access take effect immediately. For example, when the user navigates to a new page or refreshes the current page in Envizi ESG Suite, the new restrictions apply.

The restriction settings also apply to API tokens that are generated by the login. Therefore, the list of accessible organizations in the Envizi ESG Suite API varies depending on the login settings that are configured.