Skip to content
No result to preview.

Click in-app to access the full platform documentation for your version of DataRobot.

Platform > Administrator's guide > Manage user accounts

Manage user accounts

The DataRobot deployment provides support for local authentication users. These are user accounts you create manually (through APP ADMIN > Manage Users). DataRobot provides restrictions for login and password settings. The login credentials for these locally authenticated users are stored as fully qualified domain names.

Create user accounts

As an administrator, you create and add new users to your DataRobot installation. Use the following steps to create your own user account, and then repeat them for each additional user.

  1. Expand the profile icon located in the upper right and click APP ADMIN > Users from the dropdown menu.

  2. Click Create a user at the top of the displayed page.

  3. In the displayed dialog, enter the username (i.e., email address), first name, and password for the new user (other account settings are optional at this point).

  4. Click Create user. If successful, you see the message "Account created successfully" and the username for the new account.

  5. Click View user profile to view and configure user settings for this user, or click Close.

The new user will now be listed in the Users table. You can open the User Profile to see some important information including the user's application-assigned ID.

Set admin permissions for users

As an admin, you can set organization admin permissions for other DataRobot users within the application, including your personal user account. These permissions allow the recipient to enable or disable features per user, as needed. Visit the Settings page to see a list of available features; hover over a feature name for a brief description.

Below are the steps to enable administrator access for any user. This user will have administrator access to all DataRobot functionality configured for the application.

Note

Consider and control how you provide admin settings to non-administrator users. One way to do this is to add settings only on an as-needed basis and then remove those settings when related tasks are completed.

  1. From the Users page, locate the user and select to open the user's profile page.

  2. Click Membership to display the organization and groups that the user is a member of.

  3. Under the Organization header, check the box in the Org Admin column to enable organization admin permissions for the user.

This user can now modify settings for other users. At any point, if you want to disable these permissions for the user, uncheck the box; the user will no longer have administrator capabilities.

RBAC for users

Role-based access (RBAC) controls access to the DataRobot application by assigning users roles with designated privileges. The assigned role controls both what the user sees when using the application and which objects they have access to. RBAC is additive, so a user's permissions will be the sum of all permissions set at the user and group level.

To assign a user role:

  1. From the Users page, locate and select the user to open their profile page.

  2. Click the Permissions tab to view a list of settings and permissions.

  3. Open the User roles dropdown menu and select the appropriate role(s) for the user.

  4. When you're done, click Save changes.

Review the role and access definitions to understand the permissions enabled for each role.

Tip

Avoid granting access to specific features by assigning roles at the user-level because this makes managing permissions more difficult—causing you to have to modify several users, rather than a few groups, as well as increasing the possiblity of having users with non-standardized levels of access. Make sure access to features required to complete work are defined at the group- or org-level, and that the user is a member.

Note

Note that RBAC overrides sharing-based role permissions. For example, consider a user is assigned the Viewer role via RBAC, which only has Read access to objects. If this user has a project shared with them that grants Owner permissions (which offers Read and Write access), the Viewer role takes priority and denies the user Write access.

Manage execution environment limits

The execution environment limit allows you to control how many custom model environments a user can add to the Custom Model Workshop. In addition, the execution environment version limit allows you to control how many versions a user can add to each of those environments. These limits can be:

  1. Directly applied to the user: Set in a user's permissions. Overrides the limits set in the group and organization permissions.

  2. Inherited from a user group: Set in the permissions of the group a user belongs to. Overrides the limits set in organization permissions.

  3. Inherited from an organization: Set in the permissions of the organization a user belongs to.

If the environment or environment version limits are defined for an organization or a group, the users within that organization or group inherit the defined limits. However, a more specific definition of those limits at a lower level takes precedence. For example, an organization may have the environment limits set to 5, a group to 4, and the user to 3; in this scenario, the final limit for the individual user is 3.

For more information on adding custom model execution environments, see the Custom model environments documentation.

To manage the execution environment limits in the platform settings:

  1. Click your profile avatar (or the default avatar ) in the upper-right corner of DataRobot, and then, under APP ADMIN, click Users.

  2. From the Users page, locate and select the user to open their profile page.

  3. Click the Permissions tab to view a list of settings and permissions.

  4. On the Permissions tab, click Platform, and then click Admin Controls.

  5. Under Admin Controls, set either or both of the following settings:

    • Execution Environments limit: The maximum number of custom model execution environments a user can add. This limit setting can't exceed 999.

    • Execution Environments versions limit: The maximum number of versions a user can add to each custom model execution environment. This limit setting can't exceed 999.

  6. Click Save changes.

Change passwords

You can change passwords for internal and local authentication user accounts. If your cluster uses LDAP authentication, you cannot change the password for any of the user types (individual users or the admin@datarobot.com account). If you need help generating a new password for the default administrator, contact Customer Support.

Change your own password

To change your own password:

  1. Expand the profile icon located in the upper right and click Settings.

  2. In the displayed page, enter your current password and then the new password twice (to create and confirm. Click Change Password.

DataRobot enforces the following password policy:

  • Only printable ASCII characters
  • Minimum one capital letter
  • Minimum one number
  • Minimum 8 characters
  • Maximum 512 characters
  • Username and password cannot be the same

Change a user's password

  1. From the APP ADMIN > Manage Users page, locate the user and click to open their profile.

  2. Click Change Password.

  3. In the displayed page, enter and confirm the new password.

  4. When finished, click Change Password.

Manage membership in groups

Configuring groups ahelps you to manage users across the DataRobot platform. For more information, see:

Once created, you can add one or more users as members from the group creation page. To add users individually, follow the steps below.

Note

Note that users can see which groups they belong to from the Membership page, but they do not have permissions to make changes to those memberships.

Browse to the Users page, select the user, and in User Profile click Membership. The User Membership page shows the currently configured groups for this user.

Work with the page as follows:

Field Description Notes
Join groups (1) Click to open the Add User to Groups dialog and enter the group name(s). Users can have membership in up to ten groups.
Select Groups Saves group assignments. When successful, the dialog closes and the list updates to show the user's group membership (2).

Deactivate user accounts

You cannot delete a user account from DataRobot—this ensures that your company's data is not lost, regardless of employee movement. However, the admin can block a user's access to DataRobot while ensuring the data and projects they worked on remain intact.

From APP ADMIN > Manage Users, locate the user:

  • To deactivate, click the padlock icon next to their name, changing it to locked .
  • To restore access, click the padlock icon to open .

You can also change user account access from Users > User Profile by clicking Enable User or Disable User.

View latest user activity

From the User Profile, you can quickly access the most recent app usage activities for the user.

  • Click Recent activity (near the bottom of the page) to see the last five app activities recorded for this user. Clicking the refresh link updates the list of activities):

  • Click View Activity to see the user activity monitor showing all app activities recorded for this user.

Updated November 7, 2022
Back to top