Permissions
Each module has its own adjustable list of access rights. The permissions can be assigned to both groups and to the users.
Administration
The functions of the "Administration" module are delimited in the following manner:
- The "Administration" permission enables/disables the access of users/groups to this module. If this permission is given to users/groups, they will be able to see the "Administration" module with three tabs in it: "Overview", "Journal", "Statistics".
- The "Common settings control" permission enables/disables the access of users/groups to the "Settings" and "Security" tabs of the "Administration" module.
- The "Users control" permission enables/disables the access of users/groups to the "Groups" and "Users" tabs of the "Administration" module.
- The "Modules control" permission enables/disables the access of users/group to the "Modules" tab of the "Administration" module.
- The "Update and restart" permission enables/disables the access of users/groups to the manual updating and restarting of the system.
If the "Administration" permission is not given, all permissions bring no effect, because the users/groups cannot see this module.
|
Permissions scheme.
Server
The "Server" box contains permissions that concern the methods of authentication of users in the system:
- The "Server" permission allows/denies users the authorization in the system.
- The "Authenticate by login" permission allows/denies users' access in the system using the login and password given to them while creation.
- The "Authentication by login in domain" permission allows/denies users' access to the system using the login and password registered for them at Active Directory. In order to have this possibility of authorization the name of a corresponding domain should be specified in the "Domain" field at the "Security" tab of the "Administration" module.
- The "Authenticate by CA certificate" permission allows/denies users' access to the system using certificates issued by a certification authority. In order to have this possibility of users authentication, it is necessary to perform corresponding settings in the "Use client certificates" box at the "Security" tab of the "Administration" module.
If the "Server" permission is not given, all permissions bring no effect, because a user will not be able to authorize in the system.
|