...
In the Groups tab you manage Groups and the authorizations that Groups have.
In the Users tab, you define users, send messages and match them with groups.
| Table of Content Zone | |
|---|---|
|
Groups
System administrator: Can create users and groups. Can add and remove users to and from groups. GEODI authorizations are assigned to groups. At a minimum, we recommend creating the following groups.
GEODI Users
GEODI Managers
GEODI System Administrators
The number of group members is specified. A user can be a member of more than one group.
...
| Expand | ||
|---|---|---|
| ||
To view the permissions of a logged-in user and clear the permission cache in GEODI, the following steps can be applied. Api → User Manager Api section.
|
Limit/Override SystemAdmin superuser permissions
bydefault System Admins are privilaged and has permission to see all content.
There is a way to override this behaviour. This settings will be affective throught for all workspaces.
Set IgnoreSystemAdminContentAccessPrivileges value to TRUE(default is FALSE) in SystemSettings file. Details are in https://support.decesoftware.com/space/DEV/1390184262/System+Configuration+-+Security+Settings
Then you must set the necessary permissions for each data source. The following example assumes a DPO grup and the members will be able to open, report and inspect all findings, but SystemAdmins can not. The source name is SG-43 here. This must be repeated for other sources as well.
Please note that, when all checkboxes are off, that means are all on(a situation at the very begining). But once you check a box, then everything behaves as expected and you should give permissions one by one. a
