Configuring Users and Groups - PAS Integrity Software Suite - 7.3 - Administration & Configuration - Intergraph

Integrity Administration Guide

Language
English
Product
PAS Integrity Software Suite
Subproduct
Cyber
Search by Category
Administration & Configuration
PAS Version
7.3

The Users and Groups link in the Admin Utility allows you to specify the authentication method used for accessing the Admin Utility and the Integrity web interface. You can also define the users and groups, and create custom roles if needed.

admin-users

Integrity provides access control using the following definitions:

Sets of tasks that can be performed

Integrity provides built-in roles that allow users with those roles to perform the tasks associated with those roles. For example, a user with the Administrator role can perform all tasks in the Admin Utility and in the Integrity web interface. However, a user with the PowerUser role has a more limited set of tasks available. For more information, see Understanding Built-In Primary Roles.

Sets of assets that can be accessed

Integrity allows you to define sets of assets using custom roles. Then, if you assign a custom role to a user, that user has access to only that set of assets. The type of access is defined by the built-in role assigned to the user for that set of assets. However, if you choose to use custom roles, you need to define sets of assets for all users and groups.

You can also use Configuration Manager to define your asset hierarchy and then give access to assets using the hierarchy. For more information about defining your asset hierarchy and using it to delegate access, see Assigning Roles and Access through the Asset Hierarchy.

Integrity provides the flexibility you need to grant or deny individual users or groups of users access to sensitive areas. With the combination of built-in roles, custom roles, and asset hierarchy, you can limit which tasks a user can perform on sets of assets you define.

Consider the following topics for more information about managing users and groups and delegating permissions for sets of assets: