Manage Members

A person becomes a Coveo organization member when their account from one of the supported identity set (such as Google, Salesforce, or Office 365) is linked to a Coveo organization group or individually invited to join a group. Consequently, members are defined in the 3rd party identity providers, allowing you to more centrally manage access. Members authenticate themselves to Coveo Cloud with their third-party identity provider credentials.

People performing management tasks in the Coveo Cloud Administration Console and end users of Coveo-powered search interfaces are typical organization members.

An organization comes with built-in groups, and each of these groups has its own set of privileges. Members of the Administrators group can grant and revoke group privileges.

Add Members

There are several ways to add members to your organization:

  • Adding a single member manually on the Members page.

  • Linking an identity set of an OpenID domain (Google, Salesforce, Salesforce sandbox, or Office 365) to a group.

  • Linking a single sign-on provider to a group.

Regardless of the method you use, your members are defined in a third-party identity provider, which lets you manage them centrally. Members log in to Coveo Cloud with their credentials from this identity provider.

The following procedure describes how to add a single member to your organization through the Members page. For the other two methods, which must be executed on the Groups page, see Edit a Group.

Coveo Support employees aren’t authorized to grant privileges to customers in a Coveo organization. If you want to be granted access to a Coveo organization, you must follow the access request workflows of your company.

To add a member manually

  1. The group to which you will add your new member must already exist. If you have not created a group yet, see Manage Groups. Alternatively, you can also use one of the built-in groups.

  2. On the Members page, click Add Member.

  3. In the Invite Member panel that opens, under Provider, select the identity provider in which the member to add is defined. When logging in to the Coveo Administration Console, the member must enter the credentials they use to log in to this third-party application. Your options are:

    • An OpenID domain (Google, Salesforce, or Office 365).

    • Single sign-on if you implemented single sign-on in your organization

    • Any listed, which lets the user choose from the supported providers when they log in your organization for the first time.

    This option works only if the user has a single email address linked to multiple providers. For example, if a user uses firstname_lastname@example.com with one provider and firstname.lastname@example.com with another provider, for instance, Coveo considers these to be different addresses. Therefore, you should select a single provider and have your users log in with the corresponding address.

  4. In the Email/Username box, enter the address or username of the user that you want to add to the group. If you selected a Single sign-on in step 3, this is the NameID value that Coveo should expect from the SSO provider.

  5. Check the Send an email notification box if you want the user to receive an invitation to log in to Coveo.

  6. In the Group drop-down menu, select the group to which you want to add the user.

  7. Click Add Member.

  8. The user will receive an invitation, which expires in 14 days. Tell the new member which identity provider they should select when logging in to Coveo. The user will appear on the Members page once they accept the invitation.

Delete Members

Deleting a member immediately revokes their access to your organization, i.e., to the Coveo Administration Console and to your Coveo-powered search interfaces.

  1. On the Members page, click the member you want to remove from your organization.

  2. In the Action bar, click Delete.

  3. Click Delete to confirm.

Required Privileges

The following table indicates the privileges required to view, add, or delete members (see Manage Privileges and Privilege Reference).

Action Service - Domain Required access level
View members

Organization - Groups

View
Add or delete members

Organization - Groups

Edit
Recommended Articles