Creating permission groups
I am working with the demo version 2.6.0 beta and am trying to set this up for our directors to see if the software willl suit our purposes.
My question is about user access. Currently there are 2 user levels (user and Superuser) and some built in groups. Currently the entire user group will have access, for example, to alll of the watchlists or none of the watch lists. I have read the help topic for permissions under the system settings and it mentions a comma delimited list of virtual groups.
Is there a way I can edit the groups?
We currently have a number of clients using our own M2M site. I would need to make each client an individual group so as to keep the data isolated between clients. I would need to be able to add new clients / groups as needed.
Any advice would be greatly appreciated.
User groups is one of the exciting new features in 2.6 but will take a bit to get used to.
I think the main thing to understand is to create a new user group simple add it in the permission feild in the user.
You can see here I have a user called User1 and they are part of the "user" group and a group called "user1" and another group.
When you add your points you can now set the points accordinly or you can do it through the bulk point permission manager.
For example here I have filtered for points with the device name MangoES:
Now I have applied the group "use1" read permission to all these points in the filter:
I'll use the Permission setting on the System Setting page to control what menu items show up at the top menu for everyone in the "Users" group:
Let me know if you have any other questions about this.
Thank you very much Joel. I was only using the choices available from the drop down menu. I didn't realise that I could add new entries. I will work with that and see where it takes me.
I have been checking the user permission in accordance with your advice above and found that they are working very well.
However I found one small item to raise. I created a Guest user and only allowed them access to some of the function such as alarms, reports, dashboards, DGLux, watch lists, data point details, graphical views and excel reports. Basically the ability to view the data but not edit any of the settings.
The watch lists tab still has the user icon shown. While the guest user is not able to edit any of the watch lists permissions, the guest is still able to see the entire list of users.
If the users were set up with client names it would constitute a data protection violation.
Is there a way to remove the user icon from the watch lists section while someone without superadmin rights is logged in?
Thank you for all you help so far.
ooops screen shot did not paste....
here it is.
Thanks for pointing this out. We have discussed this and will be changed before we fully release 2.6.0
Thank you very much. I look forward to the release.