User management UI and common tasks

New user model

This doc is about managing users who are on our newer user model.

This doc explains how to find and use the user management UI and how to do some common user management tasks.

User management UI

To find your New Relic organization's user management options: From the user menu, select Administration. Here are the user management-related UI pages you can find there:

User management (link to UI): Use this to add users, update user type, manage users' groups, approve user upgrade requests, and control session settings.
Invitation approval: This is where you can approve users to be added to New Relic. These users are not yet considered provisioned and are not billable.
Access management (link to UI): Use this UI to view, create, and manage groups and roles.
API keys: Use the API keys UI to view and manage your users' API keys.
Domain capture: Use domain capture to route your users into the right place when they attempt to sign up for New Relic. Learn more about domain capture.
Authentication domains (link to UI): Use this to control how your users are added (from New Relic or from an identity provider), how they log in (manually or via SAML SSO), and more. For details, see Authentication domains.

For tips on managing users, see Common tasks and our User management videos.

Requirements

The easiest way to see what your user management permissions are is to go to the user management UI and see what you have access to.

Some user management requirements and restrictions:

This doc explains how to manage users on our newer user model.
To add and edit groups and roles, your organization must have Pro or Enterprise edition.
Permissions-related requirements:
- Requires a user type of core user or full platform user.
- Most user management permissions require the organization- and authentication domain-related administration settings.
To avoid configuration conflicts, try to ensure that only one person in your organization is managing users at a time.

User management UI

Here's a screenshot of the User management UI. We'll explain the column headers below.

Name: The user's name.
Email: The user's email address. For users with Pending: This user has been added but has not yet verified their email. Even in the Pending state, a user is considered provisioned and is therefore billable if they're a core or full platform user.
Type: The user's user type.
Last active: The last date a user was logged in to the platform. (This does not track use of our APIs that require a .) This can be useful for deciding to downgrade a user to a lower user type.
ID: A user's New Relic-assigned ID.

For information about the groups that users are in, you can download a TSV file from the UI or use NerdGraph.

Tips on common user management tasks

Here are some user management tasks you might want to do:

There are a couple of ways to add users:

Add users: Go to the User management UI and select Add user. Here are some tips about adding users:
- Adding users directly means users with a billable user type are immediately billable, even if they've never logged into New Relic and are Pending.
- Added users receive a verification email, which expires after 15 days. To resend it using the user management UI, hover over a user's Pending icon and click Resend email.
Invite users: If you're not an administrator who can add users directly, you can invite your teammates. An admin will be asked to review your invite. Pending invites that haven't been reviewed are visible on the Invitation approval UI page. When an admin reviews an invited user, they complete the Add user workflow, and that user is then considered added to New Relic.

Other notes about adding users:

If you have domain capture set up, your users can ask to be added to your organization.
You can also use our NerdGraph API to add and manage users.
If you're using automated user management, you can only add users from your identity provider.

Before changing your users' user type, we recommend you understand:

How to decide on a user type.
How users are calculated, including tips on how to time adding new users, or adjusting their user type.
User downgrade rules.
Using automated user management? You have other options for managing user type.

To change the user type of users in the UI:

From the User management UI, click the checkboxes for the users whose user type you want to edit.
Once you start selecting users, an option will appear for Edit type.

You can also edit the user type and group of a specific user by clicking on that user.

For how to use our API to manage user information, see Manage users with NerdGraph.

To manage how users upgrade their user type, see the authentication domain settings.

To grant your users the ability to manage other users, you'll need to add users to a group that has the Authentication domain settings. The two main ways to accomplish this are:

From the User management UI, you can add a user to the default Admin group, which has those settings enabled.
OR
You can create a custom group and give it those settings. For a tutorial on common user management tasks, see the user management tutorial.

Use our API

To use our API to manage accounts and users, see our NerdGraph tutorials.

Track changes

To see an audit log of changes to your account, including user management actions, you can query the NrAuditEvent.

New user model

User management UI

Requirements

User management UI

Tips on common user management tasks

Learn about users

Add users

Edit users' user type

Delete users

Export a spreadsheet of users

Give users access to accounts and roles

Create new custom groups and roles

Set up SAML SSO and/or SCIM provisioning

Grant users ability to manage other users

Control how users upgrade their user type

Use our API

Track changes