This article contains information on requesting access to Mimecast administrator roles, including the process for adding or modifying roles, password resets, and required documentation to ensure secure and authorized account changes.
Only a Basic Administrator is created by default when you join Mimecast. You can add other Administrators to your account, including those with protected permissions and content viewing rights, e.g., Super Administrator, Full Administrator, and Discovery Officer roles.
Requesting Access
If a user requires one of these roles or for Mimecast to perform a password reset, the following process must be followed:
- Create a Support Case, and on the case, the Technical Point of Contact must provide us with the following information:
-
-
-
-
The Technical Point of Contact needs to clearly state the email address that needs to be added/removed and/or the password to be reset. The email address must be internal to your Mimecast tenant.
-
The Technical Point of Contact also needs to provide the name and surname of the signatory. Please provide the following details for the signatory.
-
The signatory must be a director or higher in the organization. The following details are required for the signatory:
-
-
-
- They are required to have a Super Administrator role. Please note that the Super Administrator has the privilege to elevate other administrators below the Super Administrator role.
- Company Name/Customer.
-
Full Name of Signatory.
-
Job Title.
-
Account to be reset/Email address to be elevated.
- Select the protected role in the drop-down.
- Approve/Submit
-
-
-
-
-
-
The signatory must initial each page after reading and understanding the Mimecast role types. Before approval, the signatory must complete the above.
- Once we receive the required information, we will send the DocuSign instructions to the signatory, who must be at the director level or higher within the organization. These instructions will include a consent form, allowing the signatory to either accept or decline.
- Upon receiving the completed DocuSign form from the customer, we will perform a series of checks required to confirm the request made. If the request cannot be confirmed (i.e., the requestor is not listed on our system as an Authorized Account Contact), the process will halt, as we can only proceed when confirmation is obtained.
- Once confirmation has been obtained, the Technical Support team will process the change request.
- When the email address requested has been assigned its new role or the password has been reset, a Technical Support engineer will inform the Technical Point of Contact who raised the initial request.
The following guidelines will assist in completing the process:
- The person signing must hold a position of Director or higher within the organization.
- If a user on the account is already a Super Administrator, they can update roles for other users, including adding or removing users from the Super Administrator role. Managing this internally, without involving support, will be faster.
- For role elevations (such as super administrator, full administrator, discovery, etc.), the specific role to be elevated must be clearly stated in the support case.
- Support will verify the following criteria before elevating an account.
-
-
- The domain must be valid.
- The user needs to be listed in the internal directories.
- The address that needs to be elevated must not be an alias address.
- The account should remain active and not be disabled.
-
-
The signatory for the request and the email account being requested to be elevated can not be the same person. e.g., If Bob Smith needs to be elevated to a Super Administrator, Bob Smith can't be the signatory, even if his position with the organization is a Director or above. He will need another signatory for the request.
Comments
Please sign in to leave a comment.