Managing Roles
Entgra IoTS is shipped with a set of default roles. However, if required, tenant administrators are able to create new customized roles. Tenant administrators can use roles to manage the users and their devices, while end users allocated with device operation permissions can manage their own devices via the Entgra IoTS Console. Administrators can create roles, assign them to a user or a group of users, and edit or delete existing roles.
Adding a Role and Assigning Permissions
Follow the instructions below to add a role:
-
Sign in to the Entgra IoT Server console. If you want to try out Entgra IoT Server as an administrator, use
admin
as the username and the password. -
Click Create + in the top right corner.
-
Select Role.
-
Provide the required details and click Add.
-
Define the permissions that need to be associated with the role you created by selecting the permissions from the permission tree.
-
Click Assign.
Removing a Role
-
Go to the Roles tab in the navigation bar.
-
Go to the Actions section of the role you want to remove.
-
Click Remove Role.
Searching for Roles
-
Click on the Search Roles bar on top of the roles table.
-
Add the searching tags and then click Search.
Updating Roles
-
Go to the Actions section of the role you want to edit.
-
Click Edit Role.
-
Edit the required fields and click Update.
Updating Role Permissions
-
Go to the Actions section of the role of which you want to update the permissions.
-
Click Edit Permissions button.
-
Add the required permissions and click Assign.
Default Roles and Permissions
By default, Entgra IoTS includes a set of roles. These default roles and permissions have been explained in the following subsections.
Default User Roles
The following roles are available by default in Entgra IoTS:
i. admin
ii. internal-devicemgt-user
iii. internal-appmgt-user
i. admin - If you are defining the permissions for an IoTS administrator who needs to perform operations and configure policies, make sure to select admin. The admin permission allows the user to perform operations and configure policies for devices.
If you wish to create a user with administrative permission other than the default administrator in Entgra IoTS, follow the steps given below:
a. Add a new a role. b. Configure role permissions by specifically selecting the admin permission.
ii. internal-devicemgt-user - This is a system reserved role with the minimum set of permissions to carry out operations. When a user creates an account before accessing the device management console the user is assigned the internal-device-mgt
role by default.
iii. internal-appmgt-user - This role has the minimum set of permissions to carry out application management on the device.
Removing a Role
Follow the instructions below to update a role:
- Sign in to the IoTS device management console and click the menu icon.
- Click User Management.
- Click Role.
- Click Remove on the role you wish to remove.
- Click Remove to confirm that you want to remove the role.
Searching, Filtering and Sorting Roles
Searching for Users
Follow the instructions given below to search for roles:
- Sign in to the IoTS device management console and click the menu icon.
- Click User Management.
- Click Role.
- Search for roles using the search bar.
Filtering Users
Follow the instructions below to filter roles:
- Sign in to the IoTS device management console and click the menu icon.
- Click User Management.
- Click Role.
- Filter the roles by the role name.
Updating a Role
Follow the instructions below to update a role:
- Sign in to the IoTS device management consoleSign in to the IoTS device management console) and click the menu icon.
- Click User Management.
- Click Role.
- Click Edit on the role you wish to update.
- Update the required filed and click Update Role.
Domain: Provide the user store type from the list of items. Role Name: Provide the role name.
Updating Role Permissions
Follow the instructions below to configure the role permissions:
- Sign in to the IoTS device management console and click the menu icon.
- Click User Management.
- Click Role.
- Click Edit Permissions on the role you wish to configure.
- Select or remove the permissions as required. The levels of authority for granting permissions are illustrated in the table below. As the permissions are categorized, when the main permission category is selected, all its sub-permissions will get selected automatically.
- Select the appropriate permission levels and click Update Role Permissions.