Nexeed
    • Introduction
    • User manual
      • Basic operation
      • Setup
      • User
      • Groups
      • Roles
      • Organizations
      • Contracts
      • Modules
      • Identity providers
        • General Settings for the Identity Provider
        • Mapper Overview
      • Reports
      • Activity log
      • My Account
        • Overview: Login Tab
      • Configuration
        • Configure by file
        • How to work with the configuration file
    • Developer documentation
      • Concepts
        • Authentication
        • Authorization
        • Resources
        • Roles
        • Sharing
      • Getting started
        • Registration
        • Authentication
        • Authorization
        • Multitenancy
      • How-to
        • Get & handle tokens
        • OAuth 2.0 for Mobile and Native Apps
        • Evolve authorization in your application lifecycle
        • Use Web Core for user login
        • Handle our integration events
        • Do automated testing
        • Advertise things to colleagues
      • Deep dives
        • OAuth2 and its flows
        • OpenID Connect endpoints
      • Troubleshooting
    • API documentation
      • HTTP API
      • Event API
    • Glossary
Multitenant Access Control
  • Industrial Application System
  • Core Services
    • Block Management
    • Deviation Processor
    • ID Builder
    • Multitenant Access Control
    • Notification Service
    • Reporting Management
    • Ticket Management
    • Web Portal
  • Shopfloor Management
    • Andon Live
    • Global Production Overview
    • KPI Reporting
    • Operational Routines
    • Shift Book
    • Shopfloor Management Administration
  • Product & Quality
    • Product Setup Management
    • Part Traceability
    • Process Quality
    • Setup Specs
  • Execution
    • Line Control
    • Material Management
    • Order Management
    • Packaging Control
    • Rework Control
  • Intralogistics
    • AGV Control Center
    • Stock Management
    • Transport Management
  • Machine & Equipment
    • Condition Monitoring
    • Device Portal
    • Maintenance Management
    • Tool Management
  • Enterprise & Shopfloor Integration
    • Archiving Bridge
    • Data Publisher
    • Direct Data Link
    • Engineering UI
    • ERP Connectivity
    • Gateway
    • Information Router
    • Master Data Management
    • Orchestrator

Nexeed Learning Portal
  • Multitenant Access Control
  • User manual
  • Configuration

Configuration

This menu provides two main functions:

  • Configure by file

  • Edit Organization

Configure by file

Configure by file is used to manage Multitenant Access Control settings by uploading or downloading files.

Export Excel Template

Header

Icon/element Description

download

Download template

Configuration prefix entry

download

Download existing configuration

Download a blank template

The blank template provides a pre-defined structure for configuring Multitenant Access Control, but without any pre-filled data. This is the ideal starting point if you are setting up a new system or overhauling the authorization concept.

A more in depth explanation of the structure of the Excel file is described in Excel structure.

Prerequisites

Access Configuration Manager role

Procedure

  1. Open the Multitenant Access Control > Configuration menu entry.

  2. Click on the Configure by file tab.

  3. Click on download in the search bar.

    Download a blank Excel template

A new file named MACMA-Access-Permissions-<organizationId-template-<currentDate>.xlsx is downloaded to your local system.

Download existing configuration

Prerequisites

  • Access Configuration Manager role

  • Configuration prefix entry

    Configuration prefix entries are already applied configuration files. To create a new configuration prefix entry, see how to import a configuration file.

Procedure

  1. Open the Multitenant Access Control > Configuration menu entry.

  2. Click on the Configure by file tab.

  3. Click on download in the row of the configuration prefix entry to be downloaded.

    Export an already applied configuration file

The applied configuration file is downloaded to your local system. The file is named MACMA-Access-Permissions-<organizationId>-<configurationPrefix>-<currentDate>.xlsx.

Import configuration file

Prerequisites

Access Configuration Manager role

Procedure

  1. Open the Multitenant Access Control > Configuration menu entry.

  2. Click on the Configure by file tab.

  3. Click on add_border.

    The Import configuration file dialog opens.

    Upload Configuration File

  4. Click on add Add File to select a configuration file from your local system or drag and drop the file into upload area.

    Only one file can be uploaded at a time. The file must be in Excel format (.xlsx).

  5. To check the file for input errors, click on Validate .

    • If the validation fails, a list of errors is displayed in the Validation Errors tab. You must correct these errors in the Excel file and re-upload to proceed.

      Validation error

      The error message will indicate the specific issues found in the file, such as missing required fields, incorrect data types, or formatting errors. The message also includes the row and column numbers where the errors were found, making it easier to locate and fix.

    • If the validation is successful, a summary of the configuration changes that will be applied is displayed in multiple tabs.

      Roles and Privilege changes

  6. Review all tabs including Roles and Privileges, Groups and Assignments of Group, and Mapper.

    This step is crucial to ensure that the intended changes of the access control settings are applied correctly.

  7. Confirm the changes via the checkbox Confirm and Import.

    Confirmation checkbox

The configuration file is uploaded and processed. The changes are applied to the system, and the new roles, groups, and identity provider mappers are created based on the uploaded configuration file. The detailed changes can be looked up in the details of a configuration prefix entry.

Delete configuration prefix entry

Prerequisites

Access Configuration Manager role

Procedure

  1. Open the Multitenant Access Control > Configuration menu entry.

  2. Click on the Configure by file tab.

  3. Click on delete in the row of the configuration prefix to be deleted.

    A confirmation prompt is shown.

    Deleting a configuration prefix entry will remove all associated roles, groups, and identity provider mappers. This action cannot be undone, so ensure that you have a backup of the configuration if needed.

  4. Confirm with Delete.

The configuration prefix entry is deleted, and all associated roles, groups, and identity provider mappers are removed from the system.

Edit Organization

Edit Organization is used to edit the organization properties.

Prerequisites

Organization Configuration Manager role

Procedure

  1. Open the Multitenant Access Control > Configuration menu entry.

  2. Click on the Edit Organization tab.

    Edit Organization Name

  3. Edit the organization Name.

  4. Click on Save.

The new organization name is saved and will be displayed in the login form.

Contents

© Robert Bosch Manufacturing Solutions GmbH 2023-2025, all rights reserved

Changelog Corporate information Legal notice Data protection notice Third party licenses