This guide will explain the different user roles and their access on the Tekst App. 

Tekst offers role-based access control to ensure users have the appropriate level of access and privileges based on their needs. The standard user role provides the essential permissions needed to navigate the platform and collaborate effectively within your organization.

Following are the standard roles:

Demo

Access: Demo users have restricted permissions and cannot make any changes. They are specifically designated for use within demo organizations.

Usage: Ideal for showcasing Tekst's capabilities without the ability to modify settings.

Reader

Access: Readers only have read access, and no changes can be made to settings.

Usage: This type of user is ideal for someone who just wants to see some information but does not have the ability to change anything in any way.

Contributor

Access: Contributors have read and write access. They can change the labels, rename the organization, invite other users, and add integrations. They cannot change others' roles, delete items, or access audit logs.

Usage: Contributors are individuals that are actively involved in creating an organization’s content but do not need to manage it administratively.

Admin

Access: Admins can access and modify all settings. There can be more than one Admin per organization.

Usage: Admins are suitable for individuals who need extensive access and control within the organization.

Outlook Only

Access: Outlook Only users can only log in on the Tekst Outlook App. They can view AI insights on emails - like tags, entities, and automated actions - without accessing the main Tekst web dashboard.

Usage: This role is ideal for team members who need email intelligence directly in Outlook but don't require full platform access.

Prerequisites: 

• Your organization has an active Outlook integration configured.
• AI models are deployed to provide email insights.
• Users have Microsoft 365 or Outlook accounts.

Contact Tekst for Custom Roles

If your organization needs more granular roles or specific permissions tailored to your use case, please consider contacting support@tekst.com. Our team can provide you with more details and help you establish roles that would meet your specific organizational requirements.

Now you know how to effectively scale user roles on Tekst. Just let us know if you have any questions or need further assistance, and we will be happy to help you out via support@tekst.com.

This guide goes over the steps to invite new users to your Tekst organization.

Note that you need to be an admin or contributor to invite new users.

Step 1: Navigate to "Users"

On the Tekst platform, locate and click on the "Settings" option. This is typically found in the bottom navigation menu, providing access to various configuration and account management features.

Within the "Settings" section, find and click on the "Users" tab. This area is specifically designed for managing the users associated with your Tekst workspace.

Step 2: Click on "Add users"

Locate and click on the "Add users" option. This initiates the process of sending an invitation to the individual you want to join your Tekst workspace.

You can invite up to 25 users at once by entering multiple email addresses separated by commas.

Step 3: Enter the Email and assign a role

In the "Email" field, type the email address of the person you want to invite.

Assign one of the following roles for the invited users:

• Admin has full access to the Tekst workspace, including admin settings, user management, and role changes.

• Contributor has edit access to most modules, including the ability to invite new users, but cannot access admin settings.

• Reader has read access to most modules, but cannot edit or invite users.

• Outlook Only can only log in on the Tekst Outlook App, not on the web platform. This role is only available when your organization has an Outlook integration configured.

Now, you have successfully invited a new user to join your Tekst workspace. The invited person will receive an email with instructions on how to access and join the platform.

Optional: Delete or resend invitation

If you need to resend or delete the invitation for any reason, click on the person you wish to delete or resend the invitation to. Click on the trash can in the bottom left corner to retract the invitation or on the "Resend invite" button to resend the invitation.

If you encounter any issues or have further questions, contact Tekst support for assistance.

The steps below will guide you through the process of changing a member’s role within your Tekst account. Whether you're promoting a user to a contributor or adjusting their role for specific responsibilities, Tekst offers a simple and intuitive way to manage user roles effectively.

Step 1: Navigate to "Users".

On the Tekst platform, locate and click on the "Settings" option. This is typically found in the bottom  navigation menu, providing access to various configuration and account management features.

Within the "Settings" section, find and click on the "Users" tab. This area is specifically designed for managing the users associated with your Tekst workspace.

Step 2: Change role

In the "Users" tab, you'll see a list of all the users linked to your Tekst account. Click the user whose role you want to change. In the column 'ROLE', you can switch the user role. 

Additional Tip:

Be sure to communicate any role changes clearly with your team members to ensure aligned expectations. Once you’ve selected a new role, a confirmation message will appear, confirming that the update has been successfully applied for each member.

Congratulations! You’ve successfully updated a team member’s role on Tekst.
If you have any questions or need further assistance, feel free to consult the detailed Scribe documentation or contact Tekst Support for personalized help.
Enjoy seamless collaboration within your Tekst workspace!

Audit logs give you a detailed record of every significant action taken within your organisation. They help you monitor user activity, investigate security incidents, and maintain compliance by showing who did what, when, and from where.

Prerequisites

• You must have the Admin role to access audit logs.

Access audit logs

On the Tekst platform, click Settings in the bottom navigation menu. Then select the Audit Logs tab to open the audit log overview.

You will see a paginated table showing the most recent audit events, with the newest entries displayed first.

Understanding the audit log table

The audit log table displays four columns:

• Actor - The name of the user who performed the action, along with their IP address.
• Action - The specific action that was performed (for example, user_create or flow_publish).
• Type - The type of resource that was affected (for example, user, flow, or integration).
• Date and time - The exact date and time the action occurred.

The table shows 10 entries per page. Use the pagination controls at the bottom of the table to navigate between pages. You can also change the number of entries per page by selecting 10, 25, 50, or 100 from the page size dropdown.

Filter audit logs

You can narrow down the audit log results using two filters located above the table. Filtered views are reflected in the URL, so you can bookmark or share a specific filtered view.

Filter by date range

Click the date filter button (calendar icon) to open the date range picker. Select a start date and end date to view events within that period. You can optionally set a specific time for more precise filtering. Click Apply to update the results, or Clear to remove the date filter.

Filter by action type

Click the action filter button to open a searchable dropdown of all available action types. Type to search for a specific action, then select it to filter the table. Only one action type can be selected at a time. To remove the filter, select All Actions.

View audit log details

Click any row in the table to open a detail panel on the right side of the screen. The detail panel contains two tabs:

Details tab

• Actor - The name, user ID, and IP address of the person who performed the action.
• Action - The action name and CRUD operation type (created, read, updated, or deleted).
• Target - The type, name, and ID of the resource that was affected.
• Date and time - Both the event creation time and the server insertion time.
• Status - If the action was performed anonymously or if it failed, a status badge is displayed.
• Description - A human-readable summary of what happened.

Raw JSON tab

This tab displays the complete audit log entry as raw JSON data, useful for technical investigation or when sharing details with your development team.

Tracked events

Tekst tracks a wide range of events across your organisation. For a complete list of every event type that appears in audit logs, see the "Audit log events reference" article.

If you have any questions or need help investigating a specific event, don't hesitate to contact our support team - we're here to help.

This article lists every event type that Tekst records in the audit logs. Use this as a reference to understand what each action means when reviewing your audit log history. To learn how to access and filter audit logs in the Settings UI, see the "View audit logs" article.

Organisation

User

Integration

Flow

Model

Tag

App

Invite

Account

Process mining

API key

Auth method

The IP firewall restricts access to your Tekst project so that only users connecting from approved IP addresses can log in. When enabled, any request from an IP address that is not on the allow list is blocked. Use this feature to limit access to your office networks, VPNs, or other trusted locations.

Prerequisites

• A Tekst account with an Admin or Contributor role. Users with the Reader or Sales role cannot manage the IP firewall.

Enable the IP firewall

Step 1: Open the IP firewall settings

Go to Settings > Security. In the IP Firewall card, click Edit to open the IP allow list settings dialog.

Step 2: Add your IP addresses

Before enabling the firewall, add every IP address or range that should be allowed to access your project. In the dialog you will see a form with two fields:

• IP Address - enter a single IPv4 address (for example 203.0.113.10), a CIDR range (for example 203.0.113.0/24), or an IP range (for example 203.0.113.1-203.0.113.50).
• Description - enter a short label for the entry, such as "Amsterdam office" or "Company VPN". The description is required and can be up to 100 characters.

Click Add to add the entry to the list. Repeat this step for every network that needs access.

Your current IP address is detected automatically and shown with a Current badge in the table. You cannot remove your own IP address, which prevents you from accidentally locking yourself out.

Step 3: Enable the firewall

Toggle the Enable switch at the top of the dialog. A warning will appear reminding you that users connecting from IPs that are not on the list will be blocked.

Step 4: Save your changes

Click Save to apply the new settings. Once saved, the IP firewall is active and only the listed IP addresses can access the project.

Manage the allow list

To make changes after initial setup, go to Settings > Security, click Edit on the IP Firewall card, and update the list:

• Add an entry - fill in the IP address and description fields and click Add.
• Remove an entry - click the delete button next to the entry you want to remove. You cannot delete the entry that matches your current IP address.

Remember to click Save after making changes. If you close the dialog without saving, Tekst will warn you about unsaved changes.

Disable the IP firewall

Open the IP allow list settings dialog and toggle the Enable switch off. Your saved IP entries are preserved and will be applied again if you re-enable the firewall later.

Supported IP formats

The IP firewall accepts three formats:

Troubleshooting

If a user is blocked by the IP firewall, they will see an error message stating that their IP address is not in the allowed list. To resolve this:

1. Ask the user for their public IP address.
2. Go to Settings > Security > IP Firewall > Edit.
3. Add the IP address or a range that includes it.
4. Click Save.

If you have locked yourself out and cannot access the platform, contact Tekst support for assistance.

Tekst outbound IP addresses

If you need to allow traffic from Tekst to reach your own services (for example, webhook endpoints or custom step URLs), see Troubleshoot Firewall for a list of Tekst's fixed outbound IP addresses.

This guide will explain the different security settings and how to configure them in the Tekst App to ensure your sensitive information remains protected.

On the Tekst platform, locate and click on the "Settings" option. This is typically found in the bottom navigation menu, providing access to various configuration and account management features. Within the "Settings" section, find and click on the "Security" tab.

Compliance Settings

Messages can be viewed

When enabled, messages become visible on the Analytics page. This allows users to view sample messages related to specific (sub)topics. When disabled, no message content will be shown.

Compliance banner

The compliance banner serves as a warning to users that personally identifiable information (PII) may be visible. It encourages responsible handling of such data.

You can choose when the banner should appear: "Always", "First time only", or "Never" when viewing message data.

PII warning

When enabled, a PII warning is shown when inputting possible sensitive information.

Data can be exported

Enabling this option allows administrators to export analytics data. When active, an export field appears, providing access to a downloadable CSV file containing the relevant data. When disabled, no export can be made.

Authentication Settings

Automatic logout after time

Configure the automatic logout after a specified amount of time by clicking on the relevant bar. This adds an extra layer of security, automatically logging out the user after a set number of minutes. Adjust the number field to select the desired time in minutes according to your company needs.

Automatic logout after inactivity

Similarly, click on the bar next to this setting to automatically log out the user after a defined period of inactivity. Adjust the number field to select the desired time in minutes according to your company preferences.

Enforce multi factor authentication

This setting requires every user in the organization to enable a two factor authentication method. For a step-by-step setup guide, see Enabling Multi-Factor Authentication (MFA).

Default user role

All changes are automatically saved.

IP Firewall

The IP firewall restricts access to your project so that only users connecting from approved IP addresses can log in. When enabled, any request from an IP address that is not on the allow list is blocked.

For a detailed guide on enabling the firewall, managing the allow list, and supported IP formats, see Set up the IP firewall.

If you have any questions or run into any issues along the way, don't hesitate to contact our support team - we're here to help you get the most out of our secure platform.

This guide will go through the process of enabling MFA on your account.

Multi-Factor Authentication (MFA) adds an extra layer of protection to your account, ensuring that only you can access it, even if your password is compromised. 

Step 1: Navigate to "Account"

In the "Settings" page, go to the "Account" tab. This will take you to the section where you can manage various account settings, including the Multi-Factor Authentication setup.

Step 2: Enable MFA

Under the Authentication Settings, you can find the option to enable Multi-Factor Authentication. 

Step 3: Verification and confirmation.

Once you've completed the setup, you may be asked to verify your identity to ensure the Multi-Factor Authentication is functioning correctly.

For administrators: monitoring MFA status.

If you are an administrator, you have the capability to monitor the MFA status of members in your team. Simply navigate to the admin dashboard or designated admin section, where you'll find a list of team members and their respective MFA status.

If you ever need to make changes to your MFA settings or encounter any issues during the setup process, our support team is here to assist you.

This guide outlines how to authenticate users using Single Sign-On (SSO) instead of password authentication.

Prerequisites

Users who were added with password authentication will retain the ability to log in with their password even after SSO is enabled. Both authentication methods will work unless you disable password authentication organization-wide.

Make sure you have:

• Admin access to your identity provider (Azure AD, Google, Okta, etc.)
• Admin permissions in Tekst
• Communication plan to inform users about the change

Step 1: Enable SSO for your organization

First, set up SSO authentication for your organization so users can log in with their work credentials:

1. Navigate to Settings → SSO in your Tekst dashboard
2. Click Create new SSO
3. Select your identity provider and follow the setup guide:
   • Using Azure AD for SSO with Tekst
   • Using Google for SSO with Tekst
   • Using Okta for SSO with Tekst
4. Complete the configuration and enable the SSO method

Once SSO is enabled, all users in your organization will see the SSO login option on the Tekst login page, even if they were originally added with password authentication.

Step 2: Communicate the change to users

Since Tekst doesn't automatically force users to switch authentication methods, you need to inform your team:

1. Send an email to all users explaining that SSO is now available
2. Provide clear instructions on how to log in with SSO:
   • Go to your organization's Tekst login page (e.g., https://<yourcompany>.tekst.com)
   • Enter their work email address
   • Click the SSO option (e.g., "Continue with Microsoft", "Continue with Google")
   • Complete authentication through their identity provider
3. Let users know that their existing password will still work if they prefer

Create a short video or screenshot guide showing the new SSO login process. This helps users understand exactly what changed and reduces support requests.

Step 3: Verify users are using SSO

After enabling SSO, you can check which authentication methods your users are using:

1. Navigate to Settings → Users
2. Review the Authentication column in the members table
3. Look for badges showing:
   • "UPA" means the user is still using password authentication
   • Provider names like "google", "microsoft", or "okta" indicate SSO usage

When a user logs in with SSO for the first time, their authentication methods are automatically updated to include the SSO provider. You'll see this reflected in the Authentication column.

Troubleshooting

Limitations

• Admins cannot manually change a user's authentication method - it updates automatically when the user logs in
• Users added before SSO was enabled will retain password authentication unless they log in with SSO
• There is no bulk migration tool to force all users to SSO
• Both password and SSO authentication can coexist unless password authentication is explicitly disabled

Getting help

If you encounter issues switching users to SSO, collect the following information before contacting support:

• The email address of affected users
• The identity provider you're using (Azure AD, Google, Okta, etc.)
• Screenshots of any error messages
• Whether the SSO configuration was recently changed
• Confirmation that SSO is enabled in Settings → SSO

This guide outlines the various methods administrators and users can use to gain access to the Tekst platform.

Step 1: Navigate to the Tekst login page.

Begin by opening your web browser and navigating to your organization's Tekst login page (e.g., https://<yourcompany>.tekst.com).

Step 2: Enter an email address.

On the login page, click on the "Email" field to activate the input area and enter your email address.

Step 3: Enter your email address and password.

Enter your registered email address in the designated field, ensuring it is typed correctly. Then, click on the "Password" field and enter or paste your password. Double-check both entries for accuracy to ensure a successful login.

Step 4: Click on "Continue".

Once your email address and password are entered, click the "Continue" button. This step confirms your identity and initiates the login process.

Step 5: You are now logged in.

Congratulations! You have successfully logged into Tekst.
You now have access to the platform and can start exploring its features.

Step 6: Access your organization.

For a more personalized experience, proceed to access your organization. Click on your organization's name to seamlessly enter your Tekst workspace and begin collaborating with your team.

Step 7: Collaborate seamlessly.

Clicking on your organization's name grants you access to your Tekst workspace - a centralized hub for collaborative content creation. Within this space, you can easily work with team members, exchange ideas, and contribute to producing meaningful, high-impact content.

In conclusion, Tekst streamlines the login process, making it easy for users to access their workspaces quickly and begin collaborating efficiently.

This guide offers an overview of the elements you can customize on the Tekst platform - and how to do it.

Step 1: Navigate to the Tekst login page.

Open your web browser and navigate to your organization's Tekst login page (e.g., https://<yourcompany>.tekst.com).

Step 2: Go to settings

Once you logged in find and click on the option that says "Settings".

Step 3: Find and open organization.

Inside the settings menu, select the option called "Organization".

Step 4: Change the organization's name.

Locate the "Name" field and click on it. Then, enter your desired organization name.

Step 5: Save your updates.

Click on the "Save" button to save the changes you made to your organization's name.

Step 6: Upload the organization's logo.

Click on the "Choose File" button and select the file you’d like to use as your organization’s logo.

Step 7: Upload your logo.

Click the "Upload New File" button and select your new logo from your computer. 

Then, click "Save" to apply the changes to your organization's logo.

Congratulations! You’ve successfully customized your organization’s name and logo. You're now ready to explore the features and tools Tekst offers to support seamless collaboration and effective communication within your team.

This guide outlines the steps to take if you find yourself locked out or simply want to enhance your account security.

Step 1: Access the logging page.

Start by navigating to the Tekst login page. 
You can do this by navigating to your organization's Tekst login page (e.g., https://<yourcompany>.tekst.com) in your web browser.

Step 2: Enter your E-mail.

Find the "E-mail" field on the login page and click on it to begin the login process. 

Type in the email address associated with your Tekst account.  Make sure it's the one linked to the account for which you need to reset the password.

Step 3: Initiate a password reset.

Below the email field, you'll notice a handy "Forgot password?" link. 
Click on it to initiate the password reset process.

Step 4: Provide a reset email

After clicking "Forgot password?" a new window will prompt you to fill in the email address where you wish to receive the password reset instructions. Enter the desired email address and click the "Continue" button to confirm your request. 

Step 5: Check your email and confirm reset

Next, go to your email inbox and look for a password reset message from Tekst. Open the email and click the "CONFIRM" button to proceed.

Step 6: Set a new password

Return to the Tekst website and locate the "New password" field. Click on it and create a new, secure password for your account. 

Before proceeding, make sure it meets all specified security requirements:

• At least 8 characters

• At least 3 of the following:

  • Lower case letters (a-z)

  • Upper case letters (A-Z)

  • Numbers (0-9)

  • Special characters

Re-enter your new password to confirm it matches the one you just entered.

Finally, click the "Reset password" button. Congratulations! Your password has been successfully reset. 
You can now log in to your Tekst account using your new credentials.

Remember to keep your password secure and unique to ensure the safety of your account. If you encounter any issues during this process, feel free to reach out to our support team for assistance.