Defining User Profiles for Desktop Application Access

Profiles are pre-defined sets of access privileges that define the ICPAM modules and commands available to a user. For example, users that should have all privileges can be assigned to the Administrators profile.

If the profile enhancement feature is set in the system configuration settings (for more information, see Logins Settings), the following changes occur in this module:

·         While creating user profiles, the application prompts the user to select hierarchical location for a specific user profile.

·         When the profile enhancement feature is set, the administrator profile cannot be reused even by the cpamadmin, that is, the cpamadmin cannot assign the administrator profile to any profile users.

·         Assigning a location to a profile in the Hierarchical location field specifies the location of the profile. Other than the cpamadmin this specific profile can be accessed only by the users belonging to this location

Note: You cannot modify the Administrators profile (which is read-only).

To create profiles, do the following:

profiles_list.png

Step 1   Select Users > Profiles.

Step 2   To add a profile, click the Add button.

Step 3          From the Template drop-down list on the resulting dialog, select the profile template that most closely matches the desired level of user access for your new profile.

·         Default - A basic set of privileges is set.

·         Most Restrictive - No privileges are set.

·         Least Restrictive - All privileges are set

new_profile.png

Step 4   Click OK to open the Add Profile dialog box,

add_profile.png

Step 5            Enter the basic profile settings:

·         Type the profile name

·         Select the Enabled option

·         Specify the Location

Step 6  Click on the General tab to define the basic profile properties. Click the check box in front of an option to enable or disable a specific privilege, as described below.

General Settings: Profile Module

Field

Description

Login/Logout

Allow access to the application

Allows users to access the application.

Allow logoff without password

Allows users to logoff without the password.

Allow change password

Allows users to change password.

Allow login from all workstations

Allows users to log in to the application from different work stations.

 

Events/Alarms: Alarm Annotations (Ack., Clear, Comment)

Allow annotations

Allows users to acknowledge, clear, and comment alarms. Click the Filter button to define the events that trigger the action.

Allow multiple annotations

Allows users to acknowledge, clear, and comment multiple alarms at one time.

Allow clearing of unacknowledged alarms

Allows users to clear unacknowledged alarms from the active devices.

Allow clearing of active device alarms

Allows users to clear alarms from active devices.

Require comment on clearing alarms

Allows users to clear the alarms that are not required anymore.

 

Events/Alarms: On new alarms

Open Alarms Module

Automatically opens with new system alarms. Click the Filter button to define the events that trigger the action.

Open Manage Alarm window

Opens automatically to acknowledge/comment/clear the alarms.

Click the Filter button to define the events that trigger the action.

Open map

Automatically opens with new system alarms. Click the Filter button to define the events that trigger the action.

Show recorded video

Displays recorded video with new system alarms. Click the Filter button to define the events that trigger the action.

Show live video

Displays live video with new system alarms. Click the Filter button to define the events that trigger the action.

Show camera grid

Allows the user to view the video stream in a grid format.

 

Help: defines access to the different help systems.

Allow access to help documentation

Allows users to access help documentation.

Enable context menu in help browser

Allows users to view the help context menu.

Allow access to help PDF

Allows users to access the help PDF.

To access the help PDF, Adobe PDF is required.

 

Miscellaneous

Allow issuing device command as default

Allows users to issue device commands directly to hardware.

Allow access to external hyperlinks

Allows users to access external hyperlinks.

Require device commands to be commented

Requires users to enter a comment with each device command issued in the system.

Allow editing from right-click menus

Allows users to access the right-click Edit menu.

Allow edit preferences

Allows users to edit preferences.

Rich client: Open modules in new window

Allows users to open modules in a new window.

Make sure to click on each of the option group items (Login/Logout, Events/Alarms, Help, and Miscellaneous) in the left pane, below the tab labels.

Step 7   Click on the Modules tab to specify which the modules will be accessible to this profile, as shown below.

a. Expand the tree in the left pane, and select an ICPAM module

b. Select Allow access to module to enable access to the module.

c. (Optional) Use the Default Filter with modules such as Event, Badge, and Personnel to define the filter applied when a user opens the module.

Example

To create a profile with access to the Events module that displays events for a specific door by default, complete the following steps:

§        Create a profile with access to the Events module as described in the previous steps.

        Click Default Filter, as shown below.

        Select the Device tab.

        Click Choose.

        In the Choose Devices dialog box, expand the physical driver device tree and select a door.

choose_devices.png

        Click OK to save the changes and close the dialog box.

add_profile_modules_tab.png

Step 8            Click the Device Commands tab to define the hardware configuration commands available to the user.

add_profile_device_commands.png

a.  In the left pane, expand or collapse the list of commands for a type of device.

b.  Click on a command to select it.

c.  Select the following options:

Allow Command to be issued:

Indicates the conditions required before the command can be issued.

The options available for this field are:

·         Default: If this user profile has the privilege to issue device commands (determined by the Allow issuing device command as default option in the General tab’s Miscellaneous group), access to the selected command is enabled by default.

·         No: Deny access to the selected command.

·         Yes: Allow access to the selected command.

Filter: Apply a filter to limit the devices for the command.

 

Step 9    Click the Data Types tab to define the data available to this profile.

add_profile_data_types.png

a.  In the left pane, expand or collapse the list, and select a specific type of data.

b. To restrict the profile’s access to that data, select the appropriate set of check boxes for the following options:

Option

 Description

View

Allows the user to view the selected data type.

Create

Allows the user to add and create the selected data type.

Modify

Allows the user to modify existing data of this type.

Delete

Allows the user to delete data of this type.

Step 10   Click the Save and Close button to save the profile settings.

Step 11         Assign the profile to one or more ICPAM operators using the Logins module as explained in Creating User Login Accounts and Assigning Profiles.

 

See also:

Creating User Login Accounts and Assigning Profiles