Duty3G/User Guide/Duty3G Access
From Documentation
Revision as of 01:15, 15 September 2006 Moff (Talk | contribs) ← Previous diff |
Revision as of 01:17, 15 September 2006 Moff (Talk | contribs) Next diff → |
||
Line 59: | Line 59: | ||
<br> | <br> | ||
+ | ==[[/Duty Management | Duty Management]]== | ||
+ | |||
+ | ==[[/Adding and Maintaining Duties | Adding and Maintaining Duties]]== | ||
+ | |||
+ | ==[[/Viewing and Performing Duties | Viewing and Performing Duties]]== | ||
+ | |||
+ | ==[[/Appendix A — Installing duty3G | Appendix A - Installing duty3G]]== | ||
+ | |||
+ | ==[[/Glossary|Glossary]]== | ||
+ | |||
+ | ---- |
Revision as of 01:17, 15 September 2006
Contents |
Duty3G Access
Detailed information on accessing COSmanager applications can be found in the section COSmanager Users and Access Controls of the COSmanager User Guide. The information in this chapter is a summary of the relevant details from that manual.
To access COSmanager, a user must first have a UNIX account on the same host as COSmanager, or on a networked host. To actually run any COSmanager applications, users must have access rights to the required COSmanager menus and options.
Roles
COSmanager access is controlled by assigning to selected users one or more roles. Roles equate to responsibilities shared by some staff. Each role translates to a set of capabilities that determine users’ access to menus and functions in individual COSmanager applications.
By grouping users with similar access requirements and responsibilities, you can avoid having to allocate capabilities to individual users and security is enhanced by granting access rights according to job function, rather than to transient individuals.
Duty3G is supplied with a set of default roles such as those shown in the diagram below. These roles can be modified to more accurately reflect the needs of an installation.
Figure 4 — Capabilities and roles
Capabilities
COSmanager applications such as duty3G ‘interpret’ each one of a user’s roles, to determine what capabilities are granted to the user in that application.
- Note
- By convention, role names use initial capitals (“Admin”) and capabilities do not (“dutysuper“).
The capabilities associated with roles in duty3G can be viewed and modified by users with top-level privileges only. Examples of capabilities used within duty3G are shown in the table below and the full set can be viewed under duty3G configuration > Maintain > Access roles.
Capability | Description |
---|---|
dutysuper | Maintain all duties, including those requiring superuser access |
dutyadmin | Maintain all duties, except those requiring superuser access |
runall | Perform all duties |
runouts | Perform outstanding duties |
runsched | Perform scheduled duties |
From this example, users without dutysuper or dutyadmin capability should not be able to maintain any duty or access duty3G configuration.
Steps to Obtaining Access to duty3G
- Add user to COSmanager as either a user or a group.
- Assign appropriate COSmanager roles to the user, creating new role if required.
- Ensure capabilities assigned to role within duty3G are adequate by examining the ‘duty3G Access Capabilities/Roles’ table under duty3G configuration > Maintain > Access roles. Amend or add roles as required.