# Users This section explains the procedure to manage users and their permissions. Users can be managed locally, or via the identity provider (Idp), while assigned with [access rules](https://run-ai-docs.nvidia.com/self-hosted/2.21/infrastructure-setup/authentication/accessrules) to manage permissions. For example, user **** is a **department admin** in **department A**. ## Users Table The Users table can be found under **Access** in the NVIDIA Run:ai platform. The users table provides a list of all the users in the platform.\ You can manage users and user permissions (access rules) for both local and [SSO users](https://run-ai-docs.nvidia.com/self-hosted/2.21/infrastructure-setup/overview#single-sign-on-sso). {% hint style="info" %} **Single Sign-On Users** SSO users are managed by the identity provider and appear once they have signed in to NVIDIA Run:ai. {% endhint %} ![](https://1836807109-files.gitbook.io/~/files/v0/b/gitbook-x-prod.appspot.com/o/spaces%2FUc7kDeOTlZaDiMM2pR07%2Fuploads%2Fgit-blob-02a30665b788f617ce50de38d89220b1c1c6786a%2Fuserstable.png?alt=media) The Users table consists of the following columns: | Column | Description | | -------------- | -------------------------------------------------- | | User | The unique identity of the user (email address) | | Type | The type of the user - SSO / local | | Last login | The timestamp for the last time the user signed in | | Access rule(s) | The access rule assigned to the user | | Created By | The user who created the user | | Creation time | The timestamp for when the user was created | | Last updated | The last time the user was updated | ### Customizing the Table View * Filter - Click ADD FILTER, select the column to filter by, and enter the filter values * Search - Click SEARCH and type the value to search by * Sort - Click each column header to sort by * Column selection - Click COLUMNS and select the columns to display in the table * Download table - Click MORE and then Click Download as CSV. Export to CSV is limited to 20,000 rows. ## Creating a Local User To create a local user: 1. Click **+NEW LOCAL USER** 2. Enter the user’s **Email address** 3. Click **CREATE** 4. Review and copy the user’s credentials: * **User Email** * **Temporary password** to be used on first sign-in 5. Click **DONE** {% hint style="info" %} **Note** The temporary password is visible only at the time of user’s creation and must be changed after the first sign-in. {% endhint %} ## Adding an Access Rule to a User To create an access rule: 1. Select the user you want to add an access rule for 2. Click **ACCESS RULES** 3. Click **+ACCESS RULE** 4. Select a **role** 5. Select a **scope** 6. Click **SAVE RULE** 7. Click **CLOSE** ## Deleting a User’s Access Rule To delete an access rule: 1. Select the user you want to remove an access rule from 2. Click **ACCESS RULES** 3. Find the access rule assigned to the user you would like to delete 4. Click on the trash icon 5. Click **CLOSE** ## Resetting a User's Password To reset a user’s password: 1. Select the user you want to reset it’s password 2. Click **RESET PASSWORD** 3. Click **RESET** 4. Review and copy the user’s credentials: * **User Email** * **Temporary password** to be used on next sign-in 5. Click **DONE** ## Deleting a User 1. Select the user you want to delete 2. Click **DELETE** 3. In the dialog, click **DELETE** to confirm {% hint style="info" %} **Note** To ensure administrative operations are always available, at least one local user with System Administrator role should exist. {% endhint %} ## Using API Go to the [Users](https://app.gitbook.com/s/b5QLzc5pV7wpXz3CDYyp/authentication-and-authorization/users), [Access rules](https://app.gitbook.com/s/b5QLzc5pV7wpXz3CDYyp/authentication-and-authorization/access-rules) API reference to view the available actions.