Section 4.1.5. RAdmin user permissions

Regardless of how RAdmin users are authenticated, RAdmin applies restrictions to what RAdmin users are able to do using the RAdmin web pages.

You can impose different levels of access to the RAdmin system to different users by using RAdmin permissions. These allow you to specify what RAdmin functions your RAdmin users are permitted to access. (Do not confuse this with what your users are allowed to do: RAdmin users are usually your staff members charged with adding, changing and administering your users).

You can create any number of Permission Profiles, using the Add Permissions Profile page. Each Permission Profile lists what actions RAdmin users with that profile are permitted to do. Then you can add and configure RAdmin users using the Add Admin User page. There you can select which Permissions Profile the user gets, and therefore what things that RAdmin user is permitted to do.

When a RAdmin page is protected by web access control, RAdmin will attempt to match their web user name with a RAdmin Administrator User Name, in order to find out what permissions they have. The exceptions to this are:

If there is no web access control on that page, the name “anonymous” will be used. This is usually the general public who have few, if any permissions.
If there is no exact matching RAdmin user name, the profile for the Radmin user “DEFAULT” will be used. DEFAULT is therefor a catchall for users that do not have their own RAdmin Admin user entry.

RAdmin is delivered with a number of standard Permission profiles and 2 RAdmin users” “anonymous” and “DEFAULT”, each with the “Everything” permissions profile. This means that any user person with access to your web server has permission to do anything in RAdmin. You must change this before commissioning your system. It is common practice to give “View own usage” and “Change own password” to “anonymous”, and more extensive permissions to your staff. At least one of your staff should have the “All” profile, so that they can administer the permissions profiles of other users. The you can add, change and delete as many Permissions profiles as you need to suit your organization's requirements.