Discovery Accelerator 9 - User showed up in Users/Groups that an Admin did not manually Add
We typically do not add and remove users from the User/Groups under the application tab in DA client. But today, I took a look and found a user that should not be in there whatsoever. Now we are trying to track down how he got in there. Who put him there? When was he put there? Has he done any searches? What permissions do you need to even get into the client and add a user. Though he currently does not have a role assigned to him, I don't know that this has always been the case. Basically need to know if there is any tracking going on so we can see how this has come to be. Any assistance is much appreciated.
I get what you are trying to do. The above queries were in response to you wanting to see if they had ran any searches and to show you if they had been assigned any permissions on any cases.
As for who added him, who has the Discovery System Admin role? Also, you will need to look at any potential custom role you have created that has the permission to assign roles.
The Admin guide has this:
You must have the application permission Manage Administration Security to assign an application-wide role to a user. You require the case permission Role Assignment to assign a case-specific role. By default, Discovery System Admin users have the first permission, whereas Case Administrator users in a case have the second
I believe the ModifiedDate column from the query below will be when the user was added.
select * from tblPrincipal
Not real sure how to find out who added him, but it should be a short list based on the roles above.