Sign in

Articles in this section

How do I assign permissions or roles by group?

Avatar
ITRS Support
Follow
How do I assign permissions or roles by group?
  1. Create a role under Authentication -> Roles and define the necessary permissions. Add a Role Properties name.


  2. Under Users, select the target group and specify the same Role Properties name. All users within this folder will have the same Role permissions.
Additional Information
  Sample XML Configuration on Authentication 
<authentication>    <authenticateUsers>false</authenticateUsers>    <users>        <userGroup name="Administrators">            <roleProperties>                <roleProperty>Administrators</roleProperty>            </roleProperties>            <user name="DOMAIN\username">                <allowLogin>true</allowLogin>                <allowSystemAuth>true</allowSystemAuth>            </user>            <user name="LDN\lkikic">                <fullName>Lana Kikic</fullName>                <allowLogin>true</allowLogin>                <allowSystemAuth>true</allowSystemAuth>            </user>        </userGroup>        <userGroup name="SupportTeam">            <roleProperties>                <roleProperty>SupportTeam</roleProperty>            </roleProperties>            <user name="DOMAIN\supportusername">                <fullName>username</fullName>                <allowLogin>true</allowLogin>                <allowSystemAuth>true</allowSystemAuth>            </user>        </userGroup>        <userGroup name="ReadOnly">            <roleProperties>                <roleProperty>ReadOnly</roleProperty>            </roleProperties>            <user name="generic">                <fullName>Read Only User</fullName>                <genericUser>true</genericUser>                <allowLogin>true</allowLogin>                <allowSystemAuth>true</allowSystemAuth>                <roleProperties>                    <roleProperty>GLOBAL - ReadOnly</roleProperty>                </roleProperties>            </user>            <user name="argon">                <password>                    <plaintext>argon</plaintext>                </password>                <allowLogin>true</allowLogin>                <allowPasswordAuth>true</allowPasswordAuth>            </user>            <user name="LDN\ckrimmel">                <fullName>Cliff</fullName>                <allowLogin>true</allowLogin>                <allowSystemAuth>true</allowSystemAuth>            </user>        </userGroup>    </users>    <caseInsensitiveUsernames>true</caseInsensitiveUsernames>    <roles>        <role name="Administrators">            <description>Global Administrators</description>            <roleProperties>                <roleProperty>Administrators</roleProperty>            </roleProperties>        </role>        <role name="SupportTeam">            <permissions>                <permission>                    <setup>                        <files>                            <mainFile>true</mainFile>                            <file>*</file>                        </files>                        <access>view</access>                        <locking>none</locking>                    </setup>                </permission>                <permission>                    <command>                        <targets>                            <target>/</target>                        </targets>                        <names>                            <name>*</name>                        </names>                        <access>execute</access>                    </command>                </permission>            </permissions>            <roleProperties>                <roleProperty>SupportTeam</roleProperty>            </roleProperties>        </role>        <role name="ReadOnly">            <permissions>                <permission>                    <setup>                        <files>                            <mainFile>true</mainFile>                            <file>*</file>                        </files>                        <access>view</access>                        <locking>none</locking>                    </setup>                </permission>                <permission>                    <command>                        <targets>                            <target>//*</target>                        </targets>                        <names>                            <name>*</name>                        </names>                        <access>none</access>                    </command>                </permission>            </permissions>            <roleProperties>                <roleProperty>ReadOnly</roleProperty>            </roleProperties>        </role>    </roles></authentication>

For more information on how to set or restrict commands, see Can commands be disabled or restricted for certain users? 

Related articles

Comments

0 comments

Please sign in to leave a comment.