User Account Audit & Cleanup Guide
Summary of Audits
- Audit 1: Manually Managed Roles
Identify active and inactive users with manually managed roles that should be reviewed or removed. - Audit 2: Manually Managed Person Records
Identify active and inactive users with manually managed person records, and align them with district integration files. - Audit 3: Users with Clevr Login Access
Identify users who log in directly with a Clevr account (username/password) instead of through Single Sign-On (SSO), and limit exceptions where necessary.
Audit 1: Manually Managed Roles
List A: Active users with a manually managed role
Status: Active
Manually Managed Role: Checked
Role is not: Location, Clevr Admin
List B: Inactive users with a manually managed role
Status: Inactive
Manually Managed Role: Checked
Role is not: Location, Clevr Admin
Steps to Review & Clean Up:
Click on a user’s name to open their account details.
Locate the Roles / Locations card.
Click Edit to remove the Manually Managed Role setting.
Note: Removing this setting will also remove the user’s current manually managed Location and Role access. Confirm the change before saving.Audit 2: Manually Managed Person Records
List A: Active users with a manually managed person record
Status: Active
Manually Managed Person: Checked
Role is not: Location, Clevr Admin
List B: Inactive users with a manually managed person record
Status: Inactive
Manually Managed Person: Checked
Role is not: Location, Clevr Admin
Steps to Review & Clean Up:
Click on a person’s name in the list to open their details.
Click Edit to remove the Manually Managed Person setting.
Important: Removing this setting will sync the person record with the integration files provided by your District.If the person is included in the file, their record will be updated accordingly.
If the person is not included, their status will be set to Inactive.
Audit 3: Users with Clevr Login Access
Recommended Action:
Review this list carefully.
Ensure only valid exceptions (e.g., test accounts or specific admin users) are allowed to retain Clevr login credentials.
Whenever possible, configure all users to authenticate through SSO for security and consistency.
Allow Clevr Login can also be set at the role level. If checkbox is greyed out and cannot be unchecked, then the setting has been applied to the role and would need to be modified at the Role level (Configuration module)Related Articles
Person Management Module - Add a Person / User Account
The Person Management Module provides administrators the ability to create, update and verify user accounts. If the person belongs to a role that is automated in Clevr, it's recommended that you add the person to the source system that drives the ...User Account Settings - Manually Override Automated Access
These settings are applied to an individual user account in the Person Management Module. If the person is automated, their role can be automated or manually managed. If the person is manually managed, their role can only be manually managed. If the ...Person Management Module - Navigation and Searching
The Person Management Module provides administrators the ability to create, update and verify user accounts. This is an administrative function that requires access to the Person Management Module. It’s important to know the difference between a ...Person Management Module
Workflow Visualization Guide
This guide provides step-by-step instructions for creating, configuring, and managing Workflow Visualizations within Clevr’s Form Management system. It covers how to assign roles and permissions, define workflow stages (statuses), establish ...