User Profile and Settings

All users added to your KnowBe4 console have a personal profile that displays their performance on phishing security tests, their training completion, and their Risk Score and Phish-prone Percentage. User information such as email address and job title is also found here and can be manually modified as needed.

After you add users to the console, you will see them on your user list beneath the Users > Users tab. Click any user's name or email to access their profile.

The User Profile is made up of five tabs. Click the links below to navigate to a specific tab or section.

Jump to:

User Dashboard
Phishing
Training
User Timeline
User Information

• Modifying User Information
• User Account Details
  • Option: Risk Booster
  • Option: Out of Office Until
  • Option: PhishER Enabled
  • Option: MFA Enabled
•  

 

User Dashboard

After clicking on a user in the user list, you’ll be taken to their User Dashboard. This tab shows the user’s phishing results, training assignments, and risk score.

1. Name and Groups: Shows the user’s name and the number of groups they are in. To see a list of these groups, click Groups (Click to view).
   ×

   User's Group List

   

   Close
2. Phishing Results: This section shows the user’s Phish-prone Percentage, how many Simulated Phishing Emails they received, how many Phishing Tests they failed, and how many Simulated Phishing Emails they reported.
   • Click the Phish Failures by Type button to view a graph of the different types of failures this user has had (Click to view).
     ×

     Phish Failures by Type

     

     Close
3. Training Assignments: This section shows the user’s training completion percentage as well as how many assignments are currently in progress, how many they have completed, and how many they haven't started yet.
   • Click the View Training Details button to view a graph of the campaigns the user is currently in which can be filtered by status (Click to view).
     ×

     Training Details

     

     Close
4. Risk: This section shows the user’s Risk Score, risk factors, and a line chart of the user’s risk history. For more information on user risks, see our Virtual Risk Officer (VRO) and Risk Score Guide article.
   
   

Back to top

 

Phishing

The Phishing tab displays the user’s Personal Phish-prone Percentage. Their Phish-prong Percentage is based on the number of phishing test failures divided by the number of phishing emails delivered. See this article for more information on the Phish-prone Percentage.

This tab also lists each simulated phishing email that the user has interacted with. This includes interactions such as clicking a link, opening an attachment, and reporting the email through the Phish Alert Button (PAB). Hover over a checkmark to view the timestamp for that interaction.

You also have the ability to download this information by clicking Download CSV.

If you’d like to view the phishing template the user interacted with, click the eye icon to preview the email.

Back to top

 

Training

The Training tab displays all campaigns that the user has been enrolled in. For each campaign, you’ll see the date the user was enrolled, if they have started their training, how long they have worked on their training, how much time is left before the due date, what they scored, and the completion status.

You also have the ability to download this information by clicking Download CSV.

If you’d like to download a completion certificate for any of these training assignments, click the trophy icon   to the right of the completion status of that assignment.

Back to top

 

User Timeline

The User Timeline tab shows a complete history of the user's phishing tests, related emails, and the training console itself (Click to view).

You can use the drop-down fields at the top of the page to filter your results by event type or date range.

In the Event Type drop-down, you can select one or more event types such as “Passed Phishing" or “Started Course". To remove a selected event type from the filter, click the x next to the name of the event type (Click to view).

In the Date Range drop-down, you can select from common time frames such as “Last Quarter" or “Year to Date". You can also select Custom Date Range to choose a specific start and end date.

The timeline records all of the below events:

KMSAT Event Types	Event
General user events:	The user was created. The user logged in.
Phishing test-related events:	The user received an email. The user bounced an email. The user clicked a link. Only the first click will be recorded here. The user opened an attachment. User entered data on a landing page. The user enabled a macro. The user replied to an email. The user passed a phishing test. The user reported an email using the PAB. The user reported an email without using the PAB. The user reported an email as spam.
Training-related events:	The user was added to a training campaign. The user was enrolled in a course. The user started a course. The user completed a course. The user was enrolled in an assessment. The user started an assessment. The user completed an assessment. The user was enrolled in a policy. The user started a policy. The user completed a policy.
PasswordIQ events:	The user was detected for a vulnerability. The user was not detected for a vulnerability. The user's detection status changed.
Other:	A click or other failure type was removed from phishing test results. The user's email was found in a security breach (part of VRO/Risk calculation). Note: Data breach involvement events may appear on the timeline as happening before your user was added to the console. This is because the User Timeline uses the date that a data breach was reported. For example, a user who was added in 2018 may have been found to be part of a data breach that was reported in 2012.
Custom Event Types
User Created events:	A list of all custom event types created through the User Event API will populate under the User Events section of the Event Type drop-down. See our User Event API article for more information.

Back to top

 

User Information

The User Information tab lists user attributes, such as user languages, job title, user account details, and number of sign-ins. From this page, you can also enable features such as Multi-Factor Authentication (MFA). 

Back to top

 

Modifying User Information

There are three ways you can modify a user's information. These methods are listed below, with the most recommended method listed first:

1. Automatically sync your user list through user provisioning.
   • As a best practice, we recommend modifying your user details with your identity provider when you are using user provisioning and allowing the next sync to update your user's information.
   • When using user provisioning to sync user information, most settings will be uneditable through the other methods.
   • See our Active Directory Integration article or our SCIM Configuration Guide for more information.
2. Import a prepared CSV.
   • From the Users > Import Users > CSV Import tab, you can import a CSV containing your users' email addresses, along with any additional information you'd like to include about your users.
   • Be sure to follow the formatting steps in this article when adding user fields and details to your CSV: How to Import Users with a CSV File
3. Manually edit a user’s profile from the User Information tab.

Back to top

 

User Account Details

The User Account Details section shows basic account history and login data, such as how many times the user has signed in, when their confirmation email was sent, and the last IP they signed in from.

Back to top

 

Option: Risk Booster

You have the option to set a Risk Booster for any user. See our Risk Booster Guide for more information.

Back to top

 

Option: Out of Office Until

Near the bottom of the User Information tab, you have the Out of Office Until option. You can use this option to pause training notifications for a user while they are out of the office until the selected date. Notifications sent to managers and admins about this user will also be paused.

Back to top

 

Option: PhishER Enabled

Near the bottom of the User Information tab, you have the option to enable or disable a user’s access to PhishER. By default, PhishER will be disabled for users and enabled for admins.

As an admin, you have the option to disable and re-enable your own PhishER access. If PhishER is enabled, a Go to PhishER drop-down menu option will be available by clicking on your email address in the top-right of the KnowBe4 console.

Back to top

 

Option: MFA Enabled

Near the bottom of the User Information tab, you have the option to enable Multi-factor Authentication (MFA) for your users as an added layer of security. We strongly recommend that you enable MFA for any users with elevated security roles or admin access.

See our Multi-Factor Authentication Guide for more information.

Back to top