# Manage users

Manage user accounts and permissions through the centralized user administration interface in the METAMETA workspace.

![User administration list showing names, email addresses, and account status](/assets/images/list-of-users-33d63e7d6f8de853668368a48a25540e.png)

## User management interface[​](#user-management-interface "Direct link to User management interface")

Access user management through the primary users page at METAMETA/USER:

* **User administration** - add, modify, and manage all user accounts
* **Permission control** - assign and modify user access levels
* **Account status** - activate or deactivate user accounts

## Creating new users[​](#creating-new-users "Direct link to Creating new users")

### Required information[​](#required-information "Direct link to Required information")

When creating a user under an organization, the mandatory fields are:

* **Email address** - serves as the unique identifier and login credential
* **Full name** - used for display and identification

![New user form with email, full name, and organization fields](/assets/images/create-user-4dd8dc7cf89be15d99660dabbba094ae.png)

## User lifecycle management[​](#user-lifecycle-management "Direct link to User lifecycle management")

### User onboarding[​](#user-onboarding "Direct link to User onboarding")

* **Account creation** - establish new user accounts with appropriate permissions
* **Workspace assignment** - add users to relevant workspaces
* **Group membership** - assign users to appropriate groups for permissions

### Ongoing administration[​](#ongoing-administration "Direct link to Ongoing administration")

* **Permission updates** - modify user access as roles and responsibilities change
* **Workspace management** - add or remove users from workspaces as needed
* **Account maintenance** - handle password resets and account issues

### User offboarding[​](#user-offboarding "Direct link to User offboarding")

* **Account deactivation** - disable accounts for departing users
* **Data preservation** - ensure important data is retained and accessible
* **Permission cleanup** - remove access to sensitive information
* **Workspace cleanup** - remove users from workspaces they no longer need

## Best practices[​](#best-practices "Direct link to Best practices")

### User provisioning[​](#user-provisioning "Direct link to User provisioning")

* **Standardized process** - establish consistent procedures for user creation
* **Permission templates** - create standard permission sets for common roles
* **Documentation** - maintain records of user assignments and permissions

### Security considerations[​](#security-considerations "Direct link to Security considerations")

* **Principle of least privilege** - grant only necessary permissions
* **Regular audits** - periodically review user permissions and access
* **Account monitoring** - track unusual activity or access patterns

## Related[​](#related "Direct link to Related")

* [Single sign-on (SSO)](/admin-guide/system-admin/single-sign-on-sso.md) - configure SSO so users authenticate with their existing organizational credentials instead of Comind.work passwords
* [Manage groups](/admin-guide/system-admin/manage-groups.md) - organize users into groups for bulk permission assignment