The Administration workspace is your TimeTonic control center to manage all your users: internal collaborators, contractors, suppliers, partners, or any external participant present in your workspaces. The distinction between internal and external users allows you to tailor access according to each person's profile.
You can also view your active plan here and monitor your data and AI credit quotas in real time.
About the Company Account
When one of your users creates a workspace, the account where the Company Account is configured instantly becomes the owner. You therefore have a global view of all the workspaces in your organization.
Ownership transfer cannot currently be managed from the Company Account.
Contents
The Two Types of Users
TimeTonic distinguishes two categories of users based on their relationship with your organization. This distinction is reflected by the checkbox External? in the Users table.
Internal Users
These are your collaborators, belonging to your organization. Their accounts are created and managed by you. The External? box is not checked.
In this example, jbinoche, lucas2, and jean are internal users.
External Users
These are your partners, who do not belong to your organization. You did not create their account and cannot delete it: this typically refers to a user who already has a TimeTonic account and whom you invite to your workspaces. The External? box is checked.
In this example, jean is an external user.
Create a user
Internal users
To create an internal user, add a record to the Users table and fill in the following fields:
Once these fields are filled in, set the Status column to Active to activate the account.
TimeTonic checks that the email and User ID are not already used in the global TimeTonic user base. If the check is successful, the User ID is copied into the SysUserID field and becomes immutable. The Validation result field displays OK on success. If it fails, follow the instructions provided in that same field to fix the issue.
External Users
External users, such as your partners or clients, cannot be created from the Users table. To add them, go directly to your workspace and invite them via the standard invitation procedure.
Once the external user accepts the invitation, their account appears in your Company Account. You can then manage their rights on your workspaces just like an internal user.
Edit a User
For internal users, you can modify the First Name, Last Name, and Email fields. Changes are immediately reflected in the user's profile.
The SysUserID, External?, and Validation result fields are immutable once the account is created.
You cannot edit external users from your Company Account since their accounts do not belong to you.
Delete a User
Internal Users
Deleting an internal user is done in two steps:
- Set their Status to Inactive. The account is then blocked and no longer consumes a license.
- Once the account is blocked, right-click the row and select Delete Row.
Warning: once the user is deleted, the associated SysUserID and Email cannot be reused.
External Users
You cannot delete an external account from your Company Account because it does not belong to you. However, two ways allow you to remove an external user from your list:
- Remove all their rights on your workspaces: the user automatically disappears from the list.
- Manually remove them from the relevant workspace.
Authentication Options: SSO and 2FA
These options are available starting from the Business plan.
The Enforce SSO and Enforce 2FA options allow you to customize the authentication process for each user, internal or external, when they log into TimeTonic. These options are configured from the Users table in your Administration workspace.
When the SSO tenant is configured by the TimeTonic support team for your organization, the user is automatically redirected to your internal SSO page at the start of a session.
Two dedicated columns allow you to customize the authentication process:
- Enforce SSO: determines if SSO login is mandatory for this user.
- Enforce 2FA: enforces two-factor authentication from the first login.
Enforce SSO Column
This column lets you decide, for each internal or external user, whether SSO authentication is mandatory.
The message displayed in TimeTonic specifies: if the support team has configured an SSO account for your organization, you can choose whether single sign-on is required for each user. The default setting depends on your organization's SSO configuration. If in doubt, contact your administrator.
Three values are possible for this setting:
| Value | Behavior |
|---|---|
| Inherit from Company Account (default) | The user inherits the organization's global SSO configuration. |
| Enforce SSO = YES | The user is directly redirected to your organization's internal SSO interface. They log in with their corporate credentials. |
| Enforce SSO = NO | The user chooses between two login methods: either with their TimeTonic credentials (useful for an external user who does not have access to your SSO), or with their internal SSO credentials. |
Enforce 2FA Column
This column allows you to enforce two-factor authentication for an internal or external user. During their first login, the 2FA procedure is offered to secure their account.
Three values are possible for this setting:
| Value | Behavior |
|---|---|
| Inherit from Company Account (default) | The user inherits the organization's global 2FA configuration. |
| Enforce 2FA = YES | The user must go through the two-factor authentication procedure at the start of each session. |
| Enforce 2FA = NO | The two-factor authentication procedure is not enforced. |