# Management Console Users

The **Users** section lets you give users access to the GuardWare Management Console. The users added here can add new users, edit details, disable accounts, and reset credentials. Only authorised users can run scans, view sensitive data, and perform remediation. Managing this list ensures that access reflects your current team and security requirements.

<figure><img src="/files/Ar1YLB8GusWP0QqkJ1xG" alt="" width="563"><figcaption></figcaption></figure>

## Add a New User

When the Management Console is first set up, no organisation users exist. Users must be enrolled before they can access the system.

1. Navigate to **ORGANISATION** > **Users** and click the **+Enroll New User**.
2. In **Email Address**, enter a valid email address.&#x20;
3. In **Username**, enter the user's full name as it should appear in the Management Console.
4. In **Select Password Delivery Method**, choose how the new user will receive their initial password:
   1. **Email password to the user:** GuardWare sends the user a one-time password and login link automatically. This is the recommended method.
   2. **Send manually via other channels:** You generate the password and send it to the user through a secure channel. Click the **Generate strong password** icon (<i class="fa-key-skeleton">:key-skeleton:</i>) to auto-generate a strong password, or enter one manually.
5. Click **Save** to create the user account or **Reset** to clear the form and start over if needed.<br>

   <figure><img src="/files/HmUwNPYYr8FKaqPsbXsk" alt=""><figcaption></figcaption></figure>

The user receives their credentials and can log in after completing the first-time login process, during which they set up two-factor authentication and create a permanent password.

## Edit a User

1. Navigate to **ORGANISATION** > **Users**.&#x20;
2. Search for the user you want to edit and click the **Edit icon (**<i class="fa-pencil">:pencil:</i>) in the **ACTION** column.<br>

   <figure><img src="/files/r40sQkwZTC4ocNipSoyE" alt=""><figcaption></figcaption></figure>
3. Update the required details and click **Update**.

{% hint style="warning" %}
Changing the username and email **does not** create a new user account. The system maintains the same user identity with updated contact information.
{% endhint %}

## Disable a User

Disable users when they leave the organisation, change roles, or when access needs to be suspended for security reasons. Disabling a user preserves the user's activity history in the system.

1. Navigate to **ORGANISATION** > **Users.**
2. Search for the user you want to edit and click the **Disable** icon (<i class="fa-circle-xmark">:circle-xmark:</i>) in the **ACTION** column.<br>

   <figure><img src="/files/cRRqQirJhmaWc8pjPlJl" alt=""><figcaption></figcaption></figure>
3. Click **Disable** in the confirmation box.

The user immediately loses access to the Management Console.  You cannot disable your own account while logged in.

## Reset OTP

Reset a user's OTP when they have lost access to their authenticator app, their authentication codes are not working, their device may have been compromised, or when the user account needs to be forcibly re-registered.

1. Navigate to **ORGANISATION** > **Users.**&#x20;
2. Locate the user who needs their authentication reset. Click the **Reset OTP** icon in the **ACTION** column.<br>

   <figure><img src="/files/8SWaujX0bc3r7kzydxnM" alt=""><figcaption></figcaption></figure>
3. A confirmation prompt will appear. Click **Reset** to confirm.

The user's existing two-factor authentication is invalidated, and on next login, they will be prompted to register a new one in the authenticator app. This does not reset their password.

## Reset Password

1. Navigate to **ORGANISATION** > **Users.**
2. Locate the user who needs their password reset. Click the **Reset Password** icon (<i class="fa-key">:key:</i>)  in the **ACTION** column.<br>

   <figure><img src="/files/cRRqQirJhmaWc8pjPlJl" alt=""><figcaption></figcaption></figure>
3. Enter a new password in the password field (minimum eight characters with uppercase, lowercase, a number, and a special character).
4. Re-enter the password in the confirmation field and click **Reset**.

The user's existing password is immediately invalidated, and they must log in with the new password. The system does not notify the user of the change.


---

# Agent Instructions: Querying This Documentation

If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.

Perform an HTTP GET request on the current page URL with the `ask` query parameter:

```
GET https://docs.guardware.com/organisation/organisation-setup/management-console-users.md?ask=<question>
```

The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.

Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.