1C:DN > Community response > Tips and guidelines > How do I secure a remote connection? > Do not show users in the selection list ("Show in the selection list" property)

Do not show users in the selection list ("Show in the selection list" property)

Adding new users

To add a new user, click ActionsAdd in User list window. The window with user parameters will be displayed.

On the Main tab, the name and full name of the user are displayed.

Fig. New user


We do not recommend using the : character in user names. The uniqueness of Infobase users is determined by a combination of three fields: name, full name, and OS username (if OS authentication is enabled). Uniqueness is determined by the first 64 characters of the Name field, the first 128 characters of the Full name field, and the first 128 characters of the User field (provided that OS authentication is enabled). ‑‑  It is recommended not to exceed the 64 characters limit for the Name field.

TIP. It is recommended to give meaningful names to users, based on their last names, job positions, professional functions, and so on. Later, these names will be used by the employers to log on to 1C:Enterprise.


The authentication method must be set for the user.

NOTE. Client applications for Linux and macOS do not support OS authentication. A thick client running under any supported operating system does not support OpenID authentication (in any case).

Each Authentication… checkbox (1C:Enterprise authentication, OS authentication, OpenID authentication) indicates whether a corresponding authentication method is enabled. These checkboxes do not affect the order of authentication attempts. The OpenID authentication means any of the following authentication types supported by the 1C:Enterprise: OpenID itself, OpenID Connect, Unified System for Identification and Authentication (USIA). When assigning authentication types, please remember:

  • When no Authentication… checkboxes are selected, the user will not be able to log on to the application.
  • To attempt authentication using the OpenID protocol, the Infobase publication on a web server must be configured in a specific way.
  • The user will not be able to log on to the application if the user performs OS or OpenID authentication but the checkbox allowing this type of authentication is cleared.
  • To disable OS or OpenID authentication, you can also use the client application startup command-line parameters.

IMPORTANT! There must be at least one user in the system that has administrative rights and allows 1C:Enterprise authentication.


If the User cannot change password checkbox is selected, the user cannot change their password (this option only applies to 1C:Enterprise authentication).

If the Show in list checkbox is selected, the user is displayed in the user selection list when connecting to the 1C:Enterprise Infobase. If 1C:Enterprise authentication is disabled for the user, the Show in list checkbox becomes unavailable and the user is not displayed in the user selection list when connecting to the Infobase.

TIP. If the Infobase is published on a web server accessible from the Internet or the Infobase has a large number of users, it is recommended that you clear the Show in list checkbox for all users. This recommendation is particularly important for users that have Infobase administration rights.


The Unsafe operation protection checkbox specifies whether protection from unsafe operations is enabled for this user.

On the Other tab, available roles and language are displayed. If multiple roles are defined in the configuration, you can assign several roles to the user. Besides, you can select the 1C:Enterprise run mode for the user. When using Auto value, the run mode specified in the Main run mode configuration property is used. When a user requires a special run mode, you can assign it here. For example, when a user works in managed application mode, You need to set the Run mode field to Managed application.

Fig.Other parameters of a new user


You are not required to fill in all fields In user properties editing field‑ this can be done later.

If the system has user separation enabled), the data separation tab is also displayed in the user parameters.

Fig. Data separation


 All available separators (not all common attributes) are displayed on this tab. A value and usage during authentication can be specified for each separator. If the checkbox to the left of the separator name is selected, the value of the selected separator applies to the current user. The value itself is specified in the field to the right of the separator name. If the value is set for the user (not only value but a usage flag as well), changing the User separation and  Authentication separation separator properties affect the visibility and availability of this user for selection and authentication purposes.

Be the first to know tips & tricks on business application development!

A confirmation e-mail has been sent to the e-mail address you provided .

Click the link in the e-mail to confirm and activate the subscription.

© 1C LLC. All rights reserved

1C Company respects the privacy of our customers and visitors to our website.

Disclaimers and Limitation of Liability | Terms and Conditions | Privacy policy | Site Map