Release Notes
Sitelink Training
StorageForum
Sitelink Status
Storable

SSO: User Management

SSO

Once SSO is enabled for your organization, the way you manage users changes. While specific software permissions (roles) are still managed within your FMS, all identity management (adding users, resetting passwords, and unlocking accounts) now happens in the Storable SSO Portal.


Accessing the SSO Portal

You can access the portal in two ways:

  • Direct Link: Navigate to portal.storable.io.

  • Via Software:

    • Edge: Corporate > Settings > Users > Settings or New User

    • SiteLink: Corporate Control Center > Settings > User Settings > Open SSO Dashboard

    • Easy: Setup > Users & Roles > Storable Account Portal


Access Profiles

Your SSO account comes with pre-defined access profile roles based on your software. You can also create new access profiles.

    • SiteLink:

      • Admin: Gives Access to the Portal + Corporate Control Center, myHub, and SiteLink Web Edition

      • SiteLink Corp Control Only: Access to Corporate Control Center & myHub

      • SiteLink Location and Corp Control: Access to SiteLink Web Edition, Corporate Control Center& myHub

      • SiteLink Location Only: Access to SiteLink Web Edition and myHub

      • Note: Access to the Corporate level of SiteLink needs to be granted from your SiteLink software

    • Edge:

      • Admin: Access to Edge and SSO Portal administration

      • Storable Edge FMS: Access to Edge only

    • Easy:

      • Manager - All software users other than Sales Associates

      • Sales Associate - Sales Associates have limited access to the software and aren’t able to see all the features available to Managers.

      • Admin - SSO portal admin who can add/edit/delete users.


Create New Access Profile Roles

  1. Navigate to the Access Profiles tab of the SSO portal.

  2. Click New Access Profile.

  3. Enter the Name and Description of the new Access Profile.

  4. For Storable Portal Permissions, click Storable Portal.

  5. You can limit user management by checking the Manage Users box and activating the Limit User Management option. When this is enabled, assigned users can only edit users with the assigned Access Profiles chosen in the dropdown menu, and can only assign those profiles when creating new users.

The Manage Users option includes an embedded permission that lets your organization limit which profiles users can manage. This ensures that a user with limited access profiles can only create, delete, edit, or reset user-related issues for profiles for which they have explicit permission. This helps you delegate user onboarding without exposing the ability to assign or edit higher-privilege access profiles. Users with limited management privileges can still view all users.

  1. Choose your permissions for the Access Profile and click Save. The new role now appears in the list under the Access Profiles tab.

Single Sign-On (SSO) is required to view certain Storable features. Users will also need the correct Access Profile assigned to them in the SSO portal. If you're not already using SSO to log in to Storable Edge, an Admin can enable it for your company using our guide to quickly enable SSO.


You should now see the profile you created listed under Access Profiles.


Assign the Access Profile to users

1. From the Settings menu, click on the Users tab.

2. Locate a user and click Edit.

3. In the Access Profiles section, select the Access Profile(s) that should be assigned to that user.

4. Click Save User.
After saving, you’ll return to the Users list.

  • The updated user will now include the assigned Access Profiles under their Access Profiles column.

  • A confirmation message (“User updated”) will appear at the top of the screen.

Updated users should log out of their software and log back in to refresh their settings and access the new features.


Edit an Access Profile

You can edit an Access Profile and add or remove permissions from a profile by following the instructions below.

1. From the Access Profiles tab, locate the Access Profile you want to edit. The list of profiles can be searched by name. The Name column can also be sorted.

2. Click Edit.

3. You can edit the Name and Description of the Access Profile if needed.

  • Disable an existing application by selecting it on the left-hand side and toggling Allow Access to off.

  • Enable a new application by selecting the app on the left-hand side and toggling Allow Access to on.

4. Click Save.


Users Tab

Creating New Users

  1. Navigate to the Users tab of the SSO portal.

  2. On the right side of the screen, click New User to create a new user or Edit next to an existing user.

Note: When the username domain matches a verified domain name in your company's login system, the following screen is displayed. In this case, user credentials are managed in your company's login system, not in the Storable Portal account. See our help article for more information: Using Your Identity Provider’s Login with SSO.


  1. Enter the user’s name, email, and username (the default option is the user’s email).

  2. Select the user role from the Portal Roles dropdown menu.

  3. Select whether the user should have access to none, all, or specific facilities. If you choose Assign individual facility access, you can select the facilities the user should have access to under Select Facilities.

6. Click Submit when you are done.


Reset user passwords, MFA, or PIN

If you need to reset a user’s password, Multi-Factor Authentication, or PIN, click Edit next to the user's name in the User tab.

You will see the reset options on the right side of the screen.

These actions are also available on the main User screen. Click the Actions button next to the user to view these options.

Reset Password

Click Reset Password to reset a user's password. There are two methods to reset a password:

  • Send a reset link via email

  • Create a temporary password

Make a selection and click Choose Reset Method to reset the password.

Resend Activation Email

1. Navigate to the Users tab of the SSO portal. On the right side of the screen, click Edit next to the user who needs another activation email.

2. In the User Actions section on the right side of the screen, click Resend Activation. The user is automatically sent a new SSO activation email.

Delete a user

To delete a user and revoke access to your software, click Edit next to their user name on the User tab.

You will see the reset options on the right side of the screen.

You can also delete a user from the main User screen. Click the Actions button next to the user, then select Delete user account.


Security Tab

The SSO portal includes a Security tab, where you set your company's security settings.

  • Lock-out policy - Choose whether users should be locked out of the system after a specified number of failed login attempts. If you choose Yes, select the maximum number of failed attempts (1-10).

  • Multi-Factor Authentication Settings Methods - Select if you will require MFA.

  • Multi-Factor Authentication Settings - If you require MFA, you can select which methods you will allow. You can select one or more of these options.

  • Multi-Factor Challenge Frequency: Users will be required to complete an MFA challenge every 7, 14 (default), 30, or 90 days.

User Settings Tab

The SSO portal includes a User Settings tab, where you set your company's security settings.

  • Allowed Username Domains - Select Yes or No to require all users on your account to set up a username that ends in the same specific domain. For instance, you can require all usernames to end with @yourdomain. If you select Yes, you can enter a single domain or multiple domains. To add domains, enter the domain and press Enter.

  • Shared emails: All users must have an email address associated with their account. In this section, you will specify whether users will have unique email addresses or can use shared addresses. We know many organizations use shared facility email addresses for their employees; however, we recommend assigning each user an individual company email address.

Users with shared email addresses will have the following limitations:
 • Each employee who shares an email address must create a unique username. The username doesn’t have to be a valid email but must be formatted as an email address (Ex: john.doe@yourcompany.com). We recommend identifying the username format you wish your employees to use.
• Employees with a shared email address may not be able to reset their own passwords via email and may need to contact an owner to obtain a temporary password.
• If employees with a shared email make too many login attempts, they will be required to contact an owner to unlock their account.

Audit Log Tab

The SSO portal includes an Audit Log tab, where you can view changes to user access, permissions, roles, and other updates. By default, Admin users have access to the Audit Log. This information includes:

  • Author – impacted user.

  • Resource Affected — displays which part of SSO (Roles, Users, Shared Emails, Username Domains, etc.) was changed.

  • Update – explains what was changed for Roles, Access, Emails, and more.

  • Time Stamp – when the update happened.


Feedback received!

Error submitting feedback, please try again later