User Management
Administrators manage user access through the Management Panel.
Inviting users
- Navigate to Management Panel → Users
- Click Invite User
- Enter the user's email address
- Select their entity assignment
- Assign roles (Trader, Market Maker, Credit Officer, Admin)
- Send the invitation
The user receives an AEX-branded email with a link to accept the invitation and set up their account. Invitations expire after 7 days.
Managing invitations
The Invitations table lists all outstanding invitations for your entity. Global admins can filter across all entities or view all invitations at once.
Invitation status lifecycle
| Status | Meaning |
|---|---|
| pending | Sent and awaiting acceptance — the link is active |
| accepted | The recipient has completed onboarding |
| expired | The 7-day window lapsed before the recipient accepted |
| revoked | An admin cancelled the invitation before it was accepted |
Per-invitation actions
Each pending or revoked invitation row shows action buttons (requires Invitations.Send permission):
- Revoke (pending only) — cancels the outstanding invitation immediately. The link in the recipient's email becomes invalid.
- Resend (pending or revoked) — rotates the invitation token, extends the expiry by a fresh 7 days, flips a revoked invitation back to pending, and re-sends the AEX-branded email. Use this to reactivate a revoked invitation or to re-deliver a message that was missed or expired.
- Delete (pending or revoked, global scope only) — permanently removes the invitation record. This is a hard delete and cannot be undone. Only global admins see this option.
If you revoked an invitation by mistake, use Resend rather than creating a new one. Resend reactivates the same record, issues a fresh token, and sends a new email — no duplicate records are created.
Managing existing users
From the Users panel, you can:
- View user details — entity, roles, last login
- Modify roles — add or remove role assignments
- Deactivate — disable a user's access without deleting their account
- Delete (permanent) — hard-delete a user from the platform (operators only — see below)
Deactivating a user
Deactivation disables the user's access without removing their account. Deactivated users cannot log in or place orders, but their account, historical orders, fills, and audit entries are preserved. Entity admins can reactivate a deactivated user at any time.
Permanently deleting a user
Permanent deletion cannot be undone. The user's Microsoft Entra account is removed immediately, including the 30-day recycle bin. This action should only be taken when you are certain the user should be fully removed from the platform.
The Delete (trash icon) action is available to market operators only — it requires the Users.Promote permission and is not visible to entity admins.
When a user is permanently deleted:
- The user is removed from the AEX Microsoft Entra security group (best-effort).
- The user's Entra account is deleted, including the 30-day recycle bin (purge is best-effort).
- The
aexUsersdatabase row is marked as adeletedtombstone — the record is retained for historical resolution of orders, fills, and audit entries. - A
admin.event { action: 'deleted' }broadcast is sent to operators and the user's entity group. - The user's existing session tokens remain valid until they expire; access is revoked on the next token refresh (Entra account no longer exists).
What is preserved: all historical orders, fills, credit records, and audit log entries referencing the deleted user remain intact and are still attributed to the user's identity.
What is not supported: open orders or credit requests belonging to the deleted user are not automatically cancelled — these should be resolved manually before performing a deletion.
Before this action is available in production, the AEX Group Manager app registration must have the User.ReadWrite.All and Directory.ReadWrite.All Graph application permissions granted and admin-consented in the Markets tenant. Without these, the delete endpoint will return an error.
Role permissions
| Role | Trading | Credit | Admin | Excel Add-in |
|---|---|---|---|---|
| Trader | Place/cancel orders | View own entity | No | No |
| Market Maker | Place/cancel orders | View own entity | No | Full access |
| Credit Officer | View only | Manage limits | No | No |
| Admin | Full access | Full access | Full access | Full access |