Managing tenant users in Toro Pulse
The Toro Pulse Admin page gives designated administrators a controlled way to manage shared tenant access. The primary use case is a single billed tenant account with additional end users who can collaborate under the same tenant workspace without exposing billing controls to every user.
What the Admin page supports
- Create up to five additional user accounts under the same tenant.
- Assign one of three customer-facing roles: Admin, Operator, or Viewer.
- Set account status to Enabled or Disabled.
- Trigger password reset emails so each user establishes their own credentials.
- Keep billing ownership separate from day-to-day operator or viewer access.
Permissions model
| Role | Intended use | Typical permissions |
|---|---|---|
| Admin | Tenant leadership, platform coordinators, or governance owners | Manage tenant users, view tenant administration functions, and oversee governed workflow actions |
| Operator | Operational users who actively work inside the platform | View reports and participate in governed actions such as approve, reject, and regenerate where enabled by the tenant |
| Viewer | Stakeholders who need visibility without operational change rights | Read-only access to assigned tenant information |
Recommended operating model
- Keep a primary administrative account responsible for tenant governance.
- Add named end users instead of sharing credentials.
- Reserve Admin access for a small number of trusted users.
- Use Operator for day-to-day governed work.
- Use Viewer for leadership, audit, or read-only reporting access.
Creating a new user
From the Admin page, complete the required fields for Full Name, Email Address, Role, and Account Status. After the account is created, Toro Pulse can send a password reset email so the new user can establish their own credentials through the standard login flow.
Account status
Enabled users can sign in and access the platform based on their role. Disabled users remain associated with the tenant record but cannot actively sign in until re-enabled by an administrator.
Password resets
Administrators can initiate a password reset from the Admin page. The user receives an email similar to the main login password-reset experience, which helps maintain a consistent and professional onboarding process.
API layer overview
The Admin experience is backed by a tenant-scoped API layer. For customer-facing purposes, the important concept is that user-management requests are evaluated within the current tenant context and are only available to appropriately privileged administrative users.
- List tenant users: retrieve the current tenant’s user roster.
- Create tenant user: add a new account with the selected role and initial status.
- Update account status: enable or disable access for a tenant user.
- Trigger password reset: send a secure credential-reset email to a tenant user.