Infinet Wireless: Technical Documentation
Page tree

Versions Compared

Old Version 3

changes.mady.by.user Tatyana Drazhnikova

Saved on

compared with

New Version 4

changes.mady.by.user Unknown User (msirbu)

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Hide_comments

Table of Contents

NEXT -  is a multi-user system with access rights differentiation. A separate account can be created for each monitoring system operator, to be used for authorization in the web interface.

Access rights

Access The access rights depend on the user account's role. There are following rolesThe roles are as follows:

  • Superadmin - assumes full access rights and is assigned by default to the "admin" user account. This role does is not display displayed anywhere, cannot be removed and cannot be assigned.
  • Admin - NEXT administrator role. The role provides the following access rights:
    • All operations with user accounts and user groups. The exception is the "admin" user account.
    • All operations with the wireless devices.
    • All operations with events.
    • View the monitoring system settings.
  • Operator -  provides the following access rights:
    • View and manage wireless devices.
    • View and manage events.
    • View user accounts.
  • Observer - assigned by default to all new NEXT user accounts.  The role provides the following access rights:
    • View the profiles of the wireless devices profiles.
    • View and manage events.
    • View user accounts.

...

Visibility areas are a restrictive add-on for access rights. The visibility area limits the list of wireless devices that the user can access. The list of the available devices list is determined by groups of devices assigned to a user account or to a group of accounts. Thus, the user will have access only to those devices that are included in the device groups assigned to him or in the users group where he belongs to.  Visibility The visibility area is also determined by the role:

  • Superadmin and Admin - full visibility, a user will always see all devices.
  • Operator and Observer - zero visibility, a user will only see the devices included in the groups assigned to him.

Let's look at the examplesan example:

  • Devices The devices HostA and HostB included to the Group1 are part of Group1's devices group.Devices HostC
  • The devices HostC and HostD included to the Group2 are part of Group2's devices group.
  • User UserA has an Operator role the and Group1 is assigned to him.
  • User UserB  has an Admin role the Group2 and Group2 is assigned to him.

As a result:

  • User UserA can only manage the configuration of the HostA and HostB devices. His role assumes the management of the devices management, but the visibility area is limited only with devices group Group1to Group1.
  • User UserB can perform all the operations with all the devices. His role allows any operation, and the visibility area is not limited.  It means This implies that assign assigning device groups to a user with the having an admin role has no sense.

Superadmin account

...