Managing security of an object
When an object is created, only the administrator who created the object and the superadministrator have access to this object. To provide other administrators registered in the database with access to it, they must be added in the Security tab of the respective object with the type of access defined. If no access is specifically defined, they will not be able to see or access it. Access can be added directly in the Security tab or it can be added through the Security Profile of the respective administrator.
The table of the Security tab displays the following information about the administrators and administrator groups with access to the specific object:
Parameter | Description |
|---|---|
Administrators | This column lists the names of all administrators with access rights to this object. |
Via Administrator Group | The fields in this column display if the access rights to this object are assigned to the administrator via a group membership. If this is the case, the column displays the name of the administrator group. If not, the field is empty. Access rights that are assigned through groups may not be modified. |
Via Query Result | This column indicates if the access rights to this object are assigned via the result of a query, that is, a query collecting the administrators with access rights to the object. This field either displays the name of the query or an empty field. Access rights assigned through queries may not be modified. |
As Member of | The fields in this column display if the access rights to this object are assigned to the administrator via a folder membership. If this is the case, the column displays the name of the administrator group. If not, the field is empty. Access rights that are assigned through folders may not be modified. |
Read Access | This field shows if the administrator has read rights to the object. The possible values are Allow and Deny . |
Write Access | This field shows if the administrator has write rights to the object. The possible values are Allow and Deny . With write access an administrator can manipulate the object in any way such as create new children, delete the object or modify it. |
Assign Access | This access type defines if the selected administrator can assign this object to another object such as a operational rule or a transfer window. The possible values are Allow and Deny . |
Direct Access Acknowledgement | Indicates if authentication is required when accessing the device via Direct Access. |
Remote Control Acknowledgement | Indicates if authentication is required when accessing the device via Remote Control, and if yes for which specific situations. |
On Dynamic Object | This column indicates if the access rights of the administrator are on the object itself or on the results/members of the object. The field is empty if the rights are on the object itself, otherwise it displays "Yes". |
To add administrator or administrator group to assigned object
- Select the Security tab of the object in the right window pane.
- Select Edit > Add Administrator
.
The Assign Administrators and Administrator Groups dialog box appears and displays the list of all administrators and administrator groups to which you are granted at least read rights. - Select the administrator or administrator group to be added to the security settings of the object and click OK to add it.
The Properties dialog box appears on the screen, displaying the possible access types for the selected administrator. - Select the respective radio buttons to either Allow or Deny read and write access of the selected administrator to the current database object.
- Click OK to confirm the definitions and close the window.
Comments
Log in or register to comment.