Users

From TBwiki
(Difference between revisions)
Jump to: navigation, search
(Users)
(Security settings (from 2.10 and up): Adding link to the parameters)
 
(15 intermediate revisions by 5 users not shown)
Line 1: Line 1:
Users and user groups are the base of the authentication and the authorization on Toolpack systems.
+
Users and User Groups are the building blocks of authentication and authorization for Toolpack systems.
 +
 
 +
 
 +
The proper implementation of Users and User Groups increases efficiency and reduce costs by:
 +
 
 +
* Reducing Human Error,
 +
* Mitigating Risks,
 +
* Improving Security,
 +
* Speeding up and simplifying maintenance and troubleshooting.
 +
 
  
 
== Users ==
 
== Users ==
  
Every person using the Toolpack Web Portal should have their own user.
+
Each person that uses Toolpack Web Portal should be assigned their own user name and password.
Users are defined by a username and a password.  
+
  
This facilitates debugging; especially when combined with the use of audit logs and the management of authorization by user groups.
 
  
 
== User Groups ==
 
== User Groups ==
  
User groups define a group of authorized actions on each resources of the Toolpack Web Portal. Resources are defined by their presence in the left menu of the application.
+
User Groups define a list of authorized actions applied to each item in the left-hand navigation menu of the Web Portal.
  
There is 3 authorization levels per resource:
+
There are 3 authorization levels per resource:
 
   '''Read/Write'''
 
   '''Read/Write'''
 
     Full access to the resource.
 
     Full access to the resource.
 
   '''Read'''
 
   '''Read'''
     Only consultation access to the resource. The action commands will be hidden.
+
     Only view access to the resource. The action commands will be hidden.
 
   '''None'''
 
   '''None'''
 
     No access to the resource. It won't be displayed in the left menu.
 
     No access to the resource. It won't be displayed in the left menu.
  
Each users need to be in a user group. To modify a user access to a resource, you need to modify its user group or create a new user group with the required authorization.  
+
=== Best practices ===
 +
*Each User needs to be in a User Group. To modify a user's access to a resource, modify the User Group it belongs to or create a new User Group with the appropriate authorization.  
 +
 
 +
*The ''Admin'' User Group is not modifiable, and each User in this group has access to all the resources of the Web Portal.
 +
 
 +
*Be careful when creating a User Group that has full authorization to Users. Read/Write Access to users is a security risk because a user can create another user belonging to the Admin user group, thus gaining total access to the web portal.
 +
 
 +
== Security settings (from 2.10 and up) ==
 +
 
 +
Security settings regroup all the global settings options available in the Web Portal.
 +
 
 +
It contains the following options:
 +
 
 +
*[[Parameter:_Enable_password_complexity | Enable password complexity ]]
 +
*[[Parameter:_Session_Timeout | Session Timeout]]
 +
 
 +
== Configuration ==
  
The ''Admin'' user group is not modifiable and each users in this group get access to all the resource in the Web Portal.
+
{| cellpadding="5" border="1" class="wikitable"
 +
|-
 +
! width="200" style="background: rgb(239, 239, 239) none repeat scroll 0% 0%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Tsbc
 +
! width="200" style="background: rgb(239, 239, 239) none repeat scroll 0% 0%; -moz-background-clip: border; -moz-background-origin: padding; -moz-background-inline-policy: continuous;" | Tmedia/Tsig/Tdev
 +
|-
 +
| valign="top" |
 +
*[[Toolpack:Tsbc_System_Settings_A#Access_and_User_Management|v2.10: Access and User Management]]
 +
| valign="top" |
 +
*[[Toolpack:System_Settings_C#Access_and_User_Management| v2.10: Access and User Management]]
 +
*[[Toolpack:System_Settings_B#Access_and_User_Management| v2.9: Access and User Management]]
 +
*[[Toolpack:System_Settings_A#Access_and_User_Management| v2.8: Access and User Management]]
 +
|}

Latest revision as of 15:53, 4 November 2016

Users and User Groups are the building blocks of authentication and authorization for Toolpack systems.


The proper implementation of Users and User Groups increases efficiency and reduce costs by:

  • Reducing Human Error,
  • Mitigating Risks,
  • Improving Security,
  • Speeding up and simplifying maintenance and troubleshooting.


Contents

Users

Each person that uses Toolpack Web Portal should be assigned their own user name and password.


User Groups

User Groups define a list of authorized actions applied to each item in the left-hand navigation menu of the Web Portal.

There are 3 authorization levels per resource: 

 Read/Write
   Full access to the resource.
 Read
   Only view access to the resource. The action commands will be hidden.
 None
   No access to the resource. It won't be displayed in the left menu.

Best practices

  • Each User needs to be in a User Group. To modify a user's access to a resource, modify the User Group it belongs to or create a new User Group with the appropriate authorization.
  • The Admin User Group is not modifiable, and each User in this group has access to all the resources of the Web Portal.
  • Be careful when creating a User Group that has full authorization to Users. Read/Write Access to users is a security risk because a user can create another user belonging to the Admin user group, thus gaining total access to the web portal.

Security settings (from 2.10 and up)

Security settings regroup all the global settings options available in the Web Portal.

It contains the following options:

Configuration

Tsbc Tmedia/Tsig/Tdev
Retrieved from "https://docs.telcobridges.com/mediawiki/index.php?title=Users&oldid=22329"
Personal tools