Skip to main content
Version: 4.4.0


The User entity describes the iCore users that can access an iCore system. Every User belongs to a User group, which defines the authorization level of the User. 

When an iCore system is created, it includes a pre-defined User which makes it possible to access the system and perform initial setup. The first time you log on as this User, you will be prompted to change the password.  


DescriptionStringA brief description of the User.
EntityTypeEntityTypeSpecifies the entity type. The property is Read-only and is only displayed in filter listings to identify the entity type. It can be used for example when filtering on entities with a filter containing an 'All' part. For more information, see Entity filters.
IDGuidThe entity ID of the User. Automatically generated by the system.
Marked for deletionBooleanIndicates that the User has been marked for deletion, which means that it can be deleted once no more references to it exists. A User marked for deletion can no longer log on to the iCore system.
Non-interactiveBooleanIndicates that the User is a service user account, and cannot be used for interactive logins. Examples of non-interactive Users are those associated with Servers.
PasswordStringThe password of the User. The password needs to comply with the system's current password policy. For more information, see System settings.
System InternalBooleanSpecifies whether the entity is a built-in system entity (True) or a customized application entity created to meet the requirements of the business flows (False). A system entity is read-only and cannot be deleted since it may be used by system script(s). New system entities can only be added by certified iCore personnel.
User groupIUserGroupThe User group to which the User belongs. The User group determines the permissions granted to the User in the system.

For more information, see User group.
NameStringThe name of the User or the claim value that is configured to connect an iCore User with a user from the System's configured authentication provider.
Password never expiresBooleanSpecifies whether a password change is required when the password age exceeds the maximum allowed password age, as defined in the User password policy of the system (see User security).
Must change password on next logonBooleanSpecifies whether the User will be required to change password on next logon.
DisabledBooleanSpecifies if the User has been disabled. A disabled User cannot log on to the iCore system.
Authentication typeUserAuthenticationTypeIndicates how the User authenticates in an iCore system. Available values:

iCore system (username and password)
Open ID Connect

Password property

Password is only used when Authentication type is set to "iCore System".

See Also

User Group
System settings


Creating a new iCore system

Technical architecture & Runtime

Data protection
User security