Permission Management

Since release 1.5 NagVis contains a very detailed permission management. It is a role based concept where users can be assigned to one or several roles while the roles have permissions assigned.

The permissions of the different roles of a user are summarised and control the actions the user is able to perform.

Roles

Default Roles

In a fresh installation there are four roles defined:

• Administrators: Full permissions throughout the whole installation
• Managers: Read and write access to all maps, automaps and rotations. Allowed to create new maps, automaps and rotations.
• Users (read-only): Read access to all maps, automaps and rotations throughout the installation
• Guests: Read access to all demo maps, automaps and rotations

These default roles should be sufficient in the beginning. You may delete these users and roles but please be aware NOT to delete the last administrative user and role.

Customising the Roles

It is possible to create new roles for customising the permissions of users and groups of users.

For example it is easy to create a role for all SAP administrators which then can only access the SAP related maps.

Permissions

The permissions are hardcoded in NagVis. A single permission consists of three elements:

• Module: The related module (Map, Automap, Rotation, ...)
• Action: The related action (view, edit, delete, ...)
• Object: The related object (A particular user, map, ...)

Each of those three elements can be set by a dedicated name or alternatively by a wildcard "*" which then matches all modules, actions or objects.

Here is a list of all available permissions in NagVis: