User Profile and Settings

All users added to your KnowBe4 console have a personal profile that displays their performance on phishing security tests, their training completion, and their Risk Score and Phish-prone Percentage. User information such as email address and job title is also found here and can be manually modified as needed.

After you add users to the console, you will see them on your user list beneath the Users > Users tab. Click any user's name or email to access their profile.

The User Profile is made up of five tabs. Click the links below to navigate to a specific tab or section.

Jump to:

User Dashboard
Phishing
Training
User Timeline
User Information

Modifying User Information
User Account Details

User Dashboard

After clicking on a user in the user list, you’ll be taken to their User Dashboard. This tab shows the user’s phishing results, training assignments, and risk score.

Name and Groups: Shows the user’s name and the number of groups they are in. To see a list of these groups, click Groups (Click to view).

User's Group List
Phishing Results: This section shows the user’s Phish-prone Percentage, how many Simulated Phishing Emails they received, how many Phishing Tests they failed, and how many Simulated Phishing Emails they reported.
- Click the Phish Failures by Type button to view a graph of the different types of failures this user has had (Click to view).
  
  Phish Failures by Type
Training Assignments: This section shows the user’s training completion percentage as well as how many assignments are currently in progress, how many they have completed, and how many they haven't started yet.
- Click the View Training Details button to view a graph of the campaigns the user is currently in which can be filtered by status (Click to view).
  
  Training Details
Risk: This section shows the user’s Risk Score, risk factors, and a line chart of the user’s risk history. For more information on user risks, see our Virtual Risk Officer (VRO) and Risk Score Guide article.

Phishing

The Phishing tab displays the user’s Personal Phish-prone Percentage. Their Phish-prong Percentage is based on the number of phishing test failures divided by the number of phishing emails delivered. See this article for more information on the Phish-prone Percentage.

This tab also lists each simulated phishing email that the user has interacted with. This includes interactions such as clicking a link, opening an attachment, and reporting the email through the Phish Alert Button (PAB). Hover over a checkmark to view the timestamp for that interaction.

You also have the ability to download this information by clicking Download CSV.

If you’d like to view the phishing template the user interacted with, click the eye icon to preview the email.

Training

The Training tab displays all campaigns that the user has been enrolled in. For each campaign, you’ll see the date the user was enrolled, if they have started their training, how long they have worked on their training, how much time is left before the due date, what they scored, and the completion status.

You also have the ability to download this information by clicking Download CSV.

If you’d like to download a completion certificate for any of these training assignments, click the trophy icon to the right of the completion status of that assignment.

User Timeline

The User Timeline tab shows a complete history of the user's phishing tests, related emails, and the training console itself (Click to view).

You can use the drop-down fields at the top of the page to filter your results by event type or date range.

In the Event Type drop-down, you can select one or more event types such as “Passed Phishing" or “Started Course". To remove a selected event type from the filter, click the x next to the name of the event type (Click to view).

In the Date Range drop-down, you can select from common time frames such as “Last Quarter" or “Year to Date". You can also select Custom Date Range to choose a specific start and end date.

The timeline records all of the below events:

KMSAT Events
General user events:	User was created User logged in
Phishing test-related events:	User received an email User bounced an email User clicked a link Only the first click will be recorded here. User opened an attachment User entered data on a landing page User enabled a macro User replied to an email User passed a phishing test User reported an email using the PAB User reported an email as spam
Vishing test-related events:	User passed a vishing test User failed a vishing test
Training-related events:	User was added to a training campaign User was enrolled in a course User started a course User completed a course User was enrolled in an assessment User started an assessment User completed an assessment User was enrolled in a policy User started a policy User completed a policy
Other:	A click or other failure type was removed from phishing test results User's email was found in a security breach (part of VRO/Risk calculation) Note: Data breach involvement events may appear on the timeline as happening before your user was added to the console. This is because the User Timeline uses the date that a data breach was reported. For example, a user who was added in 2018 may have been found to be part of a data breach that was reported in 2012.
Custom Events
User Created events:	A list of all custom event types created through the User Event API will populate under the User Events section of the Event Type drop-down. See our User Event API article for more information.

User Information

The User Information tab lists user attributes, such as job title, account details, and number of sign-ins, and provides the ability to enable certain features such as Multi-Factor Authentication (MFA).

Modifying User Information

There are several ways to modify a user's information. We've listed them here in order of most recommended to least recommended:

Automatically syncing your user list through user provisioning.
- As a best practice, we recommend modifying your user details with your identity provider when you are using either SCIM or Active Directory Integration (ADI) and allowing the next SCIM or ADI sync to update your user's information.
- When using SCIM or ADI to sync user information, most settings will be uneditable through the other methods.
- See our SCIM Configuration Guide or Active Directory Integration article for more information.
Importing a prepared CSV.
- From the Users > Import Users > CSV Import tab, you can import a CSV containing your users' email addresses, along with any additional information you'd like to include about your users.
- Be sure to follow the formatting steps in this article when adding user fields and details to your CSV: How do I import users with a CSV file?
Manually editing a user’s profile within the User Information tab.

User Account Details

The User Account Details section shows basic account history and login data, such as how many times the user has signed in, when their confirmation email was sent, and the last IP they signed in from.

Option: Risk Booster

You have the option to set a Risk Booster for any user. See our Risk Booster Guide for more information.

Option: PhishER Enabled

Near the bottom of the User Information tab, you have the option to enable or disable a user’s access to PhishER. By default, PhishER will be disabled for users and enabled for admins.

As an admin, you have the option to disable and re-enable your own PhishER access. If PhishER is enabled, a Go to PhishER drop-down menu option will be available by clicking on your email address in the top-right of the KnowBe4 console.

Option: MFA Enabled

Near the bottom of the User Information tab, you have the option to enable Multi-factor Authentication (MFA) for your users as an added layer of security. We strongly recommend that you enable MFA for any users with elevated security roles or admin access.

See our Multi-Factor Authentication Guide for more information.

User Profile Guide

User Profile and Settings

User Dashboard

Phishing

Training

User Timeline

KMSAT Events

Note:

Custom Events