The User entity describes the iCore users that can access an iCore system. Every User belongs to a User group, which defines the authorization level of the User.
When an iCore system is created, it includes a pre-defined User which makes it possible to access the system and perform initial setup. The first time you log on as this User, you will be prompted to change the password.
|Description||String||A brief description of the User.|
|EntityType||EntityType||Specifies the entity type. The property is Read-only and is only displayed in filter listings to identify the entity type. It can be used for example when filtering on entities with a filter containing an 'All' part. For more information, see Entity filters.|
|ID||Guid||The entity ID of the User. Automatically generated by the system.|
|Marked for deletion||Boolean||Indicates that the User has been marked for deletion, which means that it can be deleted once no more references to it exists. A User marked for deletion can no longer log on to the iCore system.|
|Non-interactive||Boolean||Indicates that the User is a service user account, and cannot be used for interactive logins. Examples of non-interactive Users are those associated with Servers.|
|Password||String||The password of the User. The password needs to comply with the system's current password policy. For more information, see System settings.|
|System Internal||Boolean||Specifies whether the entity is a built-in system entity (True) or a customized application entity created to meet the requirements of the business flows (False). A system entity is read-only and cannot be deleted since it may be used by system script(s). New system entities can only be added by certified iCore personnel.|
|User group||IUserGroup||The User group to which the User belongs. The User group determines the permissions granted to the User in the system.|
For more information, see User group.
|Name||String||The name of the User or the claim value that is configured to connect an iCore User with a user from the System's configured authentication provider.|
|Password never expires||Boolean||Specifies whether a password change is required when the password age exceeds the maximum allowed password age, as defined in the User password policy of the system (see User security).|
|Must change password on next logon||Boolean||Specifies whether the User will be required to change password on next logon.|
|Disabled||Boolean||Specifies if the User has been disabled. A disabled User cannot log on to the iCore system.|
|Authentication type||UserAuthenticationType||Indicates how the User authenticates in an iCore system. Available values:|
iCore system (username and password)
Open ID Connect
Password is only used when Authentication type is set to "iCore System".