Manage Members

A person becomes a Coveo organization member when their account from one of the supported identity set (such as Google, Salesforce, or Microsoft) is linked to a Coveo organization group or individually invited to join a group. Consequently, members are defined in the 3rd party identity providers, allowing you to more centrally manage access. Members authenticate themselves to Coveo with their third-party identity provider credentials.

People performing management tasks in the Coveo Administration Console and end users of Coveo-powered search interfaces are typical organization members.

An organization comes with built-in groups, and each of these groups has its own set of privileges. Members of the Administrators group can grant and revoke group privileges.

Add Members

There are several ways to add members to your organization:

  • Adding a single member manually on the Members (platform-eu | platform-au) page.

  • Linking an identity set of an OpenID domain (Google, Salesforce, Salesforce sandbox, or Microsoft) to a group.

  • Linking a single sign-on provider to a group.

Regardless of the method you use, your members are defined in a third-party identity provider, which lets you manage them centrally. Members log in to Coveo with their credentials from this identity provider.

The following procedure describes how to add a single member to your organization through the Members (platform-eu | platform-au) page. For the other two methods, which must be executed on the Groups (platform-eu | platform-au) page, see Edit a Group.

Coveo Support employees aren’t authorized to grant privileges to customers in a Coveo organization. If you want to be granted access to a Coveo organization, you must follow the access request workflows of your company.

To add a member manually

  1. The group to which you will add your new member must already exist. If you have not created a group yet, see Manage Groups. Alternatively, you can also use one of the built-in groups.

  2. On the Members (platform-eu | platform-au) page, click Add Member.

  3. In the Invite Member panel that opens, under Provider, select the identity provider in which the member to add is defined. When logging in to the Coveo Administration Console, the member must enter the credentials they use to log in to this third-party application. Your options are:

    • An OpenID domain (Google, Salesforce, or Microsoft).

    • Single sign-on if you implemented single sign-on in your organization

    • Any listed, which lets the user choose from the supported providers when they log in your organization for the first time.

      This option works only if the user has a single email address linked to multiple providers. If a user uses with one provider and with another provider, for instance, Coveo considers these to be different addresses. In this case, you should select a single provider and have your users log in with the corresponding address.

  4. In the Email/Username box, enter the address or username of the user that you want to add to the group. If you selected a Single sign-on in step 3, this is the NameID value that Coveo should expect from the SSO provider.

  5. Check the Send an email notification box if you want the user to receive an invitation to log in to Coveo.

  6. In the Group drop-down menu, select the group to which you want to add the user.

  7. Click Add Member.

  8. The user will receive an invitation, which expires in 14 days. Tell the new member which identity provider they should select when logging in to Coveo. The user will appear on the Members (platform-eu | platform-au) page once they accept the invitation.

Adding a member to additional groups and removing them from a group must be done on the desired group subpage, in the Members tab. See Add or Edit a Group for details.

Delete Members

Deleting a member immediately revokes their access to your organization, i.e., to the Coveo Administration Console and to your Coveo-powered search interfaces.

  1. On the Members (platform-eu | platform-au) page, click the member you want to remove from your organization, and then click Delete in the Action bar.

  2. Click Delete to confirm.

Required Privileges

The following table indicates the privileges required to view, add, or delete members (see Manage Privileges and Privilege Reference).

Action Service - Domain Required access level
View members

Organization - Groups

Organization - Organization

Add or delete members

Organization - Organization


Organization - Groups