If the profile enhancement feature is set in the system configuration settings (Logins Settings), the following changes are impacted in this module:
· The location-restricted user can view only doors/door groups of their assigned location. They are allowed to create access policies only with these listed doors/door groups.
· The location-restricted user can re-use the access policies created up to the root level of the location hierarchy.
· The cpamadmin can view/edit/use the access policies created by the location-restricted users.
The number of access policies available is dependent on the type of controller:
· A Cisco Gateway controller supports up to 50 access policies
· An Identiv EM-100 controller supports up to 8 access policies
· A Mx controller supports more than 100 access policies
Note By default, the cpamadmin can view all doors in ‘Add Policy’ page because their login is not restricted by hierarchical locations.
· The Name field on the Add Policy page is a mandatory field while creating an access policy.
· When a location-restricted user logs in, the Schedule field displays the following details:
– The schedules created by the profile user
– The schedules created by cpamadmin
– The schedules created (by other location-restricted users)up to the root level of the logged in user’s location.
· The door groups of the location-restricted user’s location alone are displayed in ‘Add Policy’ page.
Note These points are applicable only when the profile enhancement feature is set on the Logins page of the System Configuration window (starting with the ICPAM 2.1 release); otherwise, the ICPAM appliance retains its behavior as in the previous CPAM 1.5.1 version.
See also: