Versions Compared

Old Version 10

changes.mady.by.user The Force

Saved on

compared with

New Version 11

changes.mady.by.user The Force

Saved on

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.
Comment: Published by Scroll Versions from this space and version 8.0.0

...

Global Permissions apply to the "TLR" or "Top Level Resource" within ProVision. By default, ProVision includes two groups with Global Permissions access - Global Admins and Global Read-Only. Initial Users are typically placed in the "Global Admins" group, and have administrative access to the entire platform. Global Read-Only users have full access to the platform, but with only read permissions.  The global default groups cannot be edited or deleted.

Administration of these permissions require Administrative privileges. As an Admin, the user can then assign global permissions to groups and users. Depending on the requirement, the user can also have Resource specific permissions depending on how their group is configured.

...

Global groups are visible under the "Groups" section subtab of the Users tab. In addition to the two default Global groups, new Global groups may be created through the "Add Group" button.

Under the resource selector, chose the "TLR"  Resource ("Top Level Resource"), and then check permissions as desired.

Image RemovedImage Added

Global User created global groups may also be edited just like standard groups, through selecting the Action Menu (Wrench Gear Icon), or clicking on the group name, to bring up the group information details. Groups may be deleted by selecting the red circle icon.

Image AddedImage Removed

Group details are the same for Global groups as for non-global groups, excepting that the resource selected is TLR (Top Level Resource). You may choose to edit the name, enable/disable the group, show or hide C/R/U/D permission details, and view users assigned to that group. Be sure to save any changes after editing.

Image RemovedImage Added

Details on each global permission option is as follows:

...

Functional AreaDescription

IPAM

IP Address Management functionality - this covers the IPAM Tab in addition to the IPAM "Gadget" that can be present in Resources.
PeerPeering functionality - covers the Peering Tab, both the Communication Manager and the Session Manager.
ResourceResource functionality - this controls access for Resources depending on either the TLR or the individual Resource(s) selected. DNS zones, records, and servers are included as "Resources".
UserUser/Group management - this controls access for User and Group functions within the administrative area for ProVision.
SWIP*This affects the SWIP/RPSL integration for ARIN/RIPE. This way a user can either be enabled to have this capability or not.
Admin*This controls whether a user is an administrator for the global ProVision application. Note: This does not confer any additional permissions on a per-resource level.

...

...

SWIP and Admin functions are only visible when Show Details is selected


Additional Information

For more information on Users and Groups, see the following areas:

Users & Permissions

Resource Permissions

Working with Users and Groups

Verifying Permissions