Location-Restricted User Permissions

Location & Doors is the module where the location hierarchy is defined. The location hierarchy is defined as BaseCampusBuildingFloorArea > Sub-Area.

After the profile enhancement feature is set in the system configuration settings (Logins Settings), the following changes are impacted in this module:

·         A location-restricted user is able to view the entire hierarchy, but only the devices from the assigned location are populated for the location-restricted user.

·         The doors are displayed to users based on the hierarchical location assigned to their user profiles. For example: if a user profile “campusadmin”is assigned to a location “BVVC”, the user can only view doors and devices related to this location and its sub-locations; action points for other locations (such as BVDC) are grayed out.

·         The Unassigned node (location) is only available for the cpamadmin and those logins who are not bound by hierarchical location.

·         The location-restricted user will not be able to execute device commands on devices from unprivileged nodes.

·         The Extended Status pane shows device information of assigned devices for the location-restricted user.

Note   If cpamadmin wishes to drag and drop a controller from one location to another, the cpamadmin should ensure that all interfaces and modules of the controller are pointed to the new location. This action will prevent the location-restricted user of the old location from accessing the controller.

Note   These points are applicable only when the profile enhancement feature is set on the Logins page the System Configuration window (starting with the ICPAM 2.1 release); otherwise, the ICPAM appliance retains its behavior as in the previous version.

 

See also:

Changing the Location of a Device or Door