Organization Administration
As a user with the Organization Administrator role, you can use the Administration view to review and manage the organization configuration, to monitor active user sessions, and to view audit entries for your organization.
Organization Configuration
To manage your organization configuration, click
in the Navigation panel.You can manage your organization information in the organization details and also in the Organization Configuration window.
Organization Details
To display the organization details, click the organization name in the Organizations view.
Organization Details Property | Description |
---|---|
Default User Password Expiry Time | Maximum number of days that a user password is valid. Users must reset their password when the maximum number of days is reached. |
Valid Domains | List of trusted domains that can make authentication requests to Control Hub on behalf of your organization. |
SAML Integration Enabled | Enables SAML authentication for your organization. Select only after completing all other required tasks to enable SAML authentication. |
Organization Configuration Window
To display the Organization Configuration window, hover over your organization name, and then click the Configuration icon: .
Organization Property | Description |
---|---|
Enable events to trigger subscriptions | Enables events so that Control Hub can trigger subscriptions for organizations. Disable events if you do not want users to use subscriptions. |
Enable System Data Collector | Enables users to select the system Data Collector as the authoring Data Collector for creating new pipelines. Enable the system Data Collector as an authoring Data Collector to let users create pipelines when they cannot access a registered Data Collector that meets the requirements for an authoring Data Collector. The system Data Collector cannot be used for data preview or pipeline validation. Disable the system Data Collector to force users to create pipelines with a registered Data Collector. Designing pipelines using an authoring Data Collector that is a newer version than the execution Data Collector can cause errors. |
Enforce permissions during object access | Enables permission enforcement to secure the integrity of organization data. Disable permission enforcement if you want all users in the organization to have full access to all objects. |
Engine reachability timeout | Number of milliseconds that Control Hub waits
for a response from an authoring engine before considering the
engine as not accessible. When the engine is not accessible, you cannot select that engine as the authoring engine when designing pipelines or creating connections. In most cases, the default value should be appropriate. Try increasing the value when the authoring engines are running, but the authoring engine selection pages indicate that engines are not accessible. |
Execution engine heartbeat interval | Maximum number of seconds since the last reported Data Collector or Transformer heartbeat before Control Hub considers the engine unresponsive. In most cases, the default value of 300 seconds, or five minutes, is sufficient. |
Maximum number of days before job status history is purged | Maximum number of days to retain the job history from each retained job run. |
Maximum number of job runs | Maximum number of job runs to retain the job history for. |
Enable Multiple Job Start Synchronization | Enables Control Hub to synchronize the start of multiple jobs. Use to ensure that the
number of pipelines running on an engine does not exceed the
configured resource threshold. Enabling the property can cause jobs
to take longer to start. When disabled, the number of pipelines running on an engine can exceed the configured Max Running Pipeline Count only if you start multiple jobs at the exact same time using the scheduler or using the Control Hub REST API. For more information, see Resource Thresholds for Data Collector or Resource Thresholds for Transformer. |
Maximum number of scheduler runs | Maximum number of scheduled task runs to retain the details for. |
Maximum number of days before scheduler runs are purged | Maximum number of days to retain run details for each scheduled task. |
Inactivity period for session termination | Maximum number of minutes that a user session can remain inactive before timing out. A user session is considered inactive when all browser tabs opened by the user and accessing Control Hub are not in focus or are closed. |
Maximum number of days before time series metrics are purged | Maximum number of days that a job can be inactive before the metrics for that job are deleted. |
On the SAML tabs, you can configure SAML authentication for your organization.
Active User Sessions
To view the currently active user sessions, click
in the Navigation panel.The Active Sessions view lists each active user session with the user ID, organization ID, time since the last activity, and time that the session will expire.
To log a user out of a session, select an active session and then click the Delete icon: .
Audits
You can view audit entries to monitor user logins and actions performed on users, groups, subscriptions, and connections.
To view the audit entries for your organization, click one of the following tabs under Administration in the Navigation panel:
- Login Audit
- Lists all user logins to the Control Hub UI in the last 30 days. Each login entry is listed with the IP address, login timestamp, and logout timestamp when applicable. User logins that are currently active are displayed with a green user icon: .
- Action Audit
- Lists the following actions performed on users and groups in the last 30
days:
- Created
- Updated
- Changed password
- Deleted
- Subscription Audit
- Lists all triggered subscriptions. Each subscription entry is listed with the subscription name, the event that triggered the subscription, the performed action, and time. Use the subscription audit to help you troubleshoot subscriptions.
- Connection Audit
- Lists the following actions performed on connections in the last 30 days:
- Created - Displayed with a green connection icon: .
- Updated - Displayed with a black connection icon: .
- Deleted - Displayed with a red connection icon: .