Access Management
Manage users across Email, SMS, and WhatsApp channels from a single screen.
Overview
The Access Management page in Netcore CPaaS provides Admins with a centralized hub to manage all platform users across Email, SMS, and WhatsApp channels. From a single screen, Admins can invite new users, assign roles, edit existing access, and remove users when needed.
This ensures that only authorised team members can access CPaaS features, and that each person's level of access is aligned with their job responsibilities.
On this page, Admins can:
- View all users in a unified list across all channels.
- Invite new users and assign them one or more roles.
- Edit roles for existing users.
- Resend verification emails for users who have not yet verified their accounts.
- Reset passwords for verified users.
- Remove users permanently from the platform.
- Search and filter users by name, email, or role.
Note
Access Management is exclusively available to Admin users. Non-admin users cannot view or access this section.
Understanding the Access Management Screen
The table below describes the fields and controls available on the Access Management screen.
| Field | Description |
|---|---|
| User | Displays the username and email address of each user. |
| Status | Shows whether the user is Verified (can log in) or Not Verified (invitation pending). |
| Roles | Lists all roles currently assigned to the user (e.g., Admin, Analyst, Marketing). |
| Channels | Displays the channels the user has access to based on their assigned roles: Email, SMS, WhatsApp. |
| Invited On | Shows the date and time the invitation was sent. |
| Last Logged In | Shows the most recent date and time the user accessed CPaaS. |
| Search | Allows you to search for users by their name or email address. |
| Filter | Allows you to filter the user list by role or verification status. |
| Invite User | Opens the invite flow to add a new user and assign them roles. |
User States
CPaaS uses a simple two-state model to track whether a user has completed the onboarding process. These states mirror the behavior in Netcore CE.
| State | Description | What the User Can Do |
|---|---|---|
| Not Verified | An invitation has been sent, but the user has not yet verified their email address. | Cannot log in to CPaaS. Admin can resend the verification email. |
| Verified | The user has clicked the verification link in their invitation email and confirmed their account. | Can log in and access CPaaS based on their assigned roles. |
Important
There are no Suspended, Disabled, Inactive, or Pending states in CPaaS. User state transitions only move in one direction: Not Verified → Verified. Removing a user is a permanent hard delete, not a state change.
Invite Users
The Invite Users feature allows Admins to add new team members and assign them the appropriate roles before they access the CPaaS dashboard.
Important
Invited users must complete email verification before they can log in. Until then, they will appear as Not Verified in the Access Management screen.
Video Tutorial
Refer to the video below to learn how to add team members and assign roles in Netcore CPaaS dashboard.
Steps to Invite a User
- Navigate to Settings > Access Management.
- Click Invite User in the top-right corner. The Invite User panel appears.
- Enter the user's email address and set a username.
- Select one or more roles to assign to the user. Refer to Role-Based Access Control for details on each role.
- Click Send Invitation. The user receives an email with a verification link.
- Once the user clicks the link and verifies their email, their status changes from Not Verified to Verified.
Note
Email addresses must be globally unique across all CPaaS users. An email already associated with a user account, including the primary account owner, cannot be reused.
Managing Existing Users
After a user is added, Admins can manage their access using the action menu (⋮) next to each user entry. The table below describes each available action.
| Action | Description | Available For |
|---|---|---|
| Edit User | Modify the user's assigned roles. You can add or remove roles using the checkbox-based role selector. | All users |
| Resend Verification Email | Resends the email invitation with the verification link. | Not Verified users only |
| Reset Password | Sends the user a password reset link via email. | Verified users only |
| Remove User | Permanently deletes the user and revokes all their access. This action cannot be undone. | All users (with Admin safety checks) |
Admin Safety Rule
You cannot remove or downgrade the last remaining Admin on the account. At least one Admin must always exist to prevent account lockout.
Validations & Rules
The following rules are enforced by the system to ensure account security and data integrity.
| Validation | Rule |
|---|---|
| Email Uniqueness | A user's email must be globally unique. It cannot be reused across users, sub-users, or the primary account owner. |
| Admin Protection | The last remaining Admin cannot be removed or have their Admin role downgraded. A second Admin must be assigned first. |
| Primary Admin Immutability | The primary account owner's Admin role cannot be removed or changed by any user, including other Admins. |
| Resend Verification | The Resend Verification Email action is only available for users in the Not Verified state. |
| Reset Password | The Reset Password action is only available for users in the Verified state. |
| Role Requirement | Every user must have at least one role assigned at all times. |
SMS User Migration
If your organization was previously using Netcore's Bisbond SMS platform, your existing SMS users will be automatically migrated into CPaaS Access Management.
What Gets Migrated
- Username
- Email address
- Mobile number (where applicable)
- Roles and access permissions (mapped to the closest equivalent CPaaS role)
How Migrated Users Appear
Migrated users appear directly in the Access Management screen alongside all other CPaaS users. They follow the same Verified / Not Verified state rules as any other user.
SMS phone number and ownership mapping is handled via a dedicated SMS mapping section, accessible from the Access Management screen.
Note
Migration will not create duplicate accounts. If a migrated user's email already exists in CPaaS, the system will consolidate the records and resolve any role conflicts automatically.
Updated 7 days ago