Managing user privileges
NetEnable utilises the underlying security model and directory management (LDAP) of the web server environment to provide a flexible and configurable system for the management of individuals/access/groups/roles/actions.
Access Control | |
---|---|
Access Control List (ACL) | Web Server Security Function Controls system level privileges to access to specific database functions. Determines which Groups have what Roles |
Groups | Web Server Security Function Groups are defined within the Web Server Security Address Book. Users are assigned to Groups. |
Role | Application Function The Role determines what application level actions users have access to ADMIN and PUBLISH exist as predefined roles. All other roles are configurable by the ADMIN. |
Actions | Application Function The system has certain actions to which access is controlled. E.g. the ability to add, edit, review, approve, allocate or archive documents in a content library. |
The combination of the ACL, Groups, Roles and Actions determines what an individual can do within the system. There are many ways to configure the system. How your system is configured for use by your organisation should be determined through a business analysis or consulting process aimed at determining your specific requirements and the most suitable approach.
By default the System Roles are matched to the System Actions. (E.g. ADD to Add, EDIT to Edit, REVIEW to Review, Etc.) Then assigned to a Group. (e.g. Author Group can ADD, EDIT, ALLOCATE and UNPUBLISH) while ensuring that correct access privileges are granted (e.g. Editor, add documents and delete documents access for the Content Library, the Admin Data store and the Navigator Data store).