π Guardz User Management: Roles, Licensing, and Automation
π Introduction
The User Management section in Guardz allows administrators to manage user licenses, assign roles, and monitor user security status.
β Key Features:
π View all users pulled from Google Workspace & Microsoft 365.
π‘οΈ Assign & manage Guardz licenses per user.
π Automate user activation/deactivation.
π Monitor security issues per user across modules.
π Available in: All Guardz Plans (Starter, Pro, Ultimate)
π Accessing User Management
1οΈβ£ Log into Guardz.
2οΈβ£ Navigate to User Management from the left sidebar.
3οΈβ£ View all users synced from your primary cloud directory.
π Note: This section does not include endpoint devices β it focuses only on user accounts.
π User Management Features
πΉ View & Modify License Status
β
Check the license status (Active β
or Inactive β).
β
Activate or deactivate Guardz protection per user.
β
Bulk change user statuses using checkboxes.
π License Assignment Rules (Default Behavior):
User Type | Default License Status |
Regular Employees | Active (Paid License) β |
Shared Inboxes | Active (Paid License) β |
Inactive/Suspended Accounts | Inactive β |
Conference Rooms | Inactive β |
External/Temporary Users | Inactive β |
π‘ Only active users consume Guardz licenses and receive protection.
πΉ Bulk License Management
1οΈβ£ Select multiple users using checkboxes.
2οΈβ£ Click Activate or Deactivate at the bottom of the page.
3οΈβ£ Save changes to apply updates.
π User Roles in Guardz
Each user has a role that defines their permissions and platform access.
πΉ Role Types & Permissions
Role | Permissions |
Member | Basic user role β Can access the User Portal (e.g., awareness training, email security actions). |
Single Customer Admin | Can activate modules, manage issues, and edit user settings for a single company. |
MSP Admin | Can manage multiple customer accounts, subscriptions, reports, and security settings. |
Viewer | Read-only access to platform sections. Cannot make changes. |
π Changing a userβs role in Guardz does NOT affect their Google/Microsoft permissions.
π Automating User Activation & Deactivation
πΉ Automatically Assigning Licenses Based on Cloud Directory
β
Set Guardz to auto-activate or deactivate users based on their status in Google Workspace/Microsoft 365.
β
Specify user groups that should be automatically assigned Guardz licenses.
π Where to Find This Setting:
1οΈβ£ User Management > Settings (or)
2οΈβ£ Security Controls > Cloud Directory
πΉ Group-Based License Automation
Choose specific groups for auto-activation.
Automatically deactivate inactive, suspended, or deleted users.
Quickly filter users to ensure correct activation settings.
π This feature ensures licenses are automatically assigned based on real-time user status.
π Monitoring User Security Status
πΉ Modules Status Overview
View which security modules are active per user:
π Indicators per module:
Symbol | Meaning |
(?) | Module not activated for the organization. |
(β) | User has open security issues. |
(β ) | User has no open issues. |
πΉ Modules Monitored:
Compromised Data
Cloud Apps
Awareness Training
Web Browsing Protection
π‘ This helps identify high-risk users who may require additional security controls.
π User Management Settings & Exports
πΉ Managing User Settings
Enable/disable Guardz licenses.
Change user roles.
Automate license assignments.
πΉ Exporting User Data
π€ Export user lists to CSV.
π¨οΈ Print user reports.
π Exports include:
User roles & license status.
Cloud apps connected per user.
Security issue summaries.
π FAQ: User Management in Guardz
πΉ How do I add internal team members to Guardz?
β
Steps:
Add the user to Google Workspace/Microsoft 365.
Assign them a Guardz license.
Guardz automatically syncs new users into the platform.
πΉ Do new users receive an invitation to Guardz?
β No invitation is sent. Users can log in using:
π app.guardz.com/login (Microsoft/Google credentials required).
πΉ How do I add a coworker to my MSP account?
β
Steps:
Ensure the user is synced in Guardz.
Navigate to User Management > Assign Role.
Choose Admin (full access) or Viewer (read-only).
πΉ How do I assign a user to a different group?
β
Groups are managed in Google/Microsoft and sync automatically into Guardz.
πΉ What happens if a user doesnβt have an Azure license?
β
The user remains enabled in Guardz and still requires protection. We do NOT recommend deactivating the user.
π Best Practices for User Management
β Use auto-activation to manage licenses efficiently.
β Review module statuses to identify high-risk users.
β Assign appropriate roles to enforce least privilege access.
β Regularly export user data for security audits.