In this tab it is possible to:
- assign permissions to users to perform actions in the system;
- differentiate the access levels for user groups;
- select sections, available for users in the user interface.
It is possible to set default rights to new registered users in the subsection User of the section Server of the server configuration file.
This tab is available for users with the permission for manage users.
General permissions
| Name | Description | Record in the server configuration file | |
|---|---|---|---|
| Run operations | It enables the section Operations and allows users to run operations. | "execute-operations" | |
| Search and bulk operations | It enables the functionality Search and Bulk operations. Manage objects permission is required. | "run-bulks" | |
| Managing objects, properties and documents | It allows to
It also allows to view and edit all the sections of objects except the Monitoring section. | "manage-objects" | |
| Create objects | It allows to
objects. | "create-objects" | |
| Modify objects | It allows to
| "modify-objects" | |
| Delete objects | This allows to delete objects. | "delete-objects" | |
| Managing links, properties and documents | It allows to It also allows to view and edit all the sections of links except the Monitoring section. | "manage-links" | |
| Create links | It allows to create links. | "create-links" | |
| Modify links | It allows to
| "modify-links" | |
| Delete links | It allows to delete links. | "delete-links" | |
| Manage flows | It allows to create, modify and delete flows. To modify flows the permission to view the Parameters section is required. | "manage-flows" | |
| Create flows | It allows to create flows. | "create-flows" | |
| Modify flows | It allows to modify flows. The permission to view the Parameters section is required. | "modify-flows" | |
| Delete flows | It allows to delete flows. | "delete-flows" | |
| Managing documents of objects and links | It allows to view and edit the Documents section. The permission to view the Documents section is required. | "manage-documents" | |
| Create documents | It allows to add links to web pages. | "create-documents" | |
| Modify documents | It allows to modify documents. | "modify-documents" | |
| Delete documents | It allows to delete documents. | "delete-documents" | |
| Upload documents | It allows to add PDF files. | "upload-documents" | |
| Managing properties of objects and links | It allows to view and edit the Properties section. The permission to view the Properties section is required. | "manage-properties" | |
| Create properties | It allows to create properties. | "create-properties" | |
| Modify properties | It allows to modify properties. | "modify-properties" | |
| Delete properties | It allows to delete properties. | "delete-properties" | |
| Manage classes | It enables the button It enables in the System configuration window the tab Object classes. | "manage-classes" | |
| Manage operations | It allows to view and edit the Operations section. | "manage-operations" | |
Manage monitoring settings | It allows to view and edit the Monitoring section. | "manage-service-properties" | |
| Manage scripts | It enables the possibility to use the option Script with text when using the probe Program or script execution. It also enables the tab Scripts in the System configuration window. | "manage-scripts" | |
View sections
This part allows to show/hide sections, available in the End view to users/user groups.
| Section | Record in the server configuration file |
|---|---|
| Data | "view-section-stat" |
| Properties | "view-section-properties" |
| Documents | "view-section-documents" |
| State history | "view-section-state-history" |
| Graphs | "view-section-history-graph" |
| Monitoring | "view-section-monitoring" |
| Parameters (of objects and links) | "view-section-entity-settings" |
| State change conditions | "view-section-state-conditions" |
| Actions on state change | "view-section-state-triggers" |
| Widgets | "view-section-widgets" |
| Change log | "view-section-audit-log" |
| Configuration changes | "view-section-config-log" |
| Operations | "view-section-operations" |
| Operations history | "view-section-operations-history" |
| Alarm generation conditions | "view-section-incident-conditions" |
| Data forming rules | "view-section-stat-rules" |
System administration permissions
Name | Description | Record in the server configuration file |
|---|---|---|
Manage system configuration
| It enables in the System configuration window the tabs | "manage-configuration" |
Update agents | It allows to update separate agents by the button | "upload-agent-updates" |
Manage users | It allows to administer all system users. | "manage-users" |
Manage event log | It allows to
in the SNMP Event Log. | "manage-event-log" |
Manage historical data | It allows to
comments on Graphs. | "manage-history" |
| Run object discovery | It allows to use node/api/discovery REST-method. | "run-discovery" |
| Read session log | It enables the Session log tab in the System configuration window. | "read-session-log" |
Group and user permissions interaction
If a user belongs to a group or several groups, then all allowed permissions are summed:
Group value | User value | Result for user |
|---|---|---|
Yes | Yes | Yes, without possibility to change the user value. |
Yes | No | Yes, without possibility to change the user value. |
No | Yes | Yes, with possibility to change the user value. |
No | No | No, with possibility to change the user value. |