Permissions

Permissions

DataSight application security allows administrators to enable and disable modules in DataSight for different accounts, as well as configuring Row Level security to enable and disable access to data based on Levels and Flags.


If a user is granted permission to use a module or feature in DataSight, then they are granted that permission everywhere whether a group they belong to has not been granted that permission. Row Level permissions allow you to limit access to data for specific Levels and Flags. In order for a User or Group to be able to view data, they must be given permission to at least one Level and one Flag entry. User or Group permissions are denied access by default (unless they are a member of the Admin group) for all Levels and Flags in your DataSight database.


The users will retain the last group privileges that they have been allocated even if the group has been deleted. It is recommended that all Users be allocated to a Group.

The table below details what permissions are able to be granted or denied in DataSight. Functional modules have an Execute permission, and the permission to View/Use, Create, Modify and Delete different user generated data and settings can be assigned.

Permission

Execute

View/Use

Create

Modify

Delete

Calculation

Y/N

 

 

 

 

Calculation Templates

 

Y/N

Y/N

Y/N

Y/N

Charts

Y/N

 

 

 

 

Conversion Tables

 

Y/N

Y/N

Y/N

Y/N

Datasheets

 

Y/N

Y/N

Y/N

Y/N

Documents

 

Y/N

Y/N

Y/N

Y/N

Equipment

 

Y/N

Y/N

Y/N

Y/N

Export/Print

Y/N

 

 

 

 

Flags

 

Y/N

Y/N

Y/N

Y/N

Gaugings

 

Y/N

Y/N

Y/N

Y/N

Graphical Flags

Y/N

 

 

 

 

Import

Y/N

 

 

 

 

Import Templates

 

Y/N

Y/N

Y/N

Y/N

Level 3 Properties

 

Y/N

Y/N

Y/N

Y/N

Level Construction

 

Y/N

Y/N

Y/N

Y/N

Level Histories

 

Y/N

 

 

 

Levels

 

 

Y/N

Y/N

Y/N

Lock Data

Y/N

 

 

 

 

Manual Data Entry

Y/N

 

 

 

 

Manual Data Entry Templates

 

Y/N

Y/N

Y/N

Y/N

Maps

Y/N

 

 

 

 

Person

 

Y/N

Y/N

Y/N

Y/N

Public Dashboard

 

Y/N

Y/N

Y/N

Y/N

Reference

 

Y/N

Y/N

Y/N

Y/N

Regressions

Y/N

 

 

 

 

Report Designer

Y/N

 

 

 

 

Saved Views

 

Y/N

Y/N

Y/N

Y/N

Security

 

Y/N

Y/N

Y/N

Y/N

Standards

 

Y/N

Y/N

Y/N

Y/N

Tasks

 

Y/N

Y/N

Y/N

Y/N

Unlock Data

Y/N

 

 

 

 

User Dashboard

 

Y/N

Y/N

Y/N

Y/N

Variable Groups

 

Y/N

Y/N

Y/N

Y/N

Variables

 

Y/N

Y/N

Y/N

Y/N

  

See also:

  • Accounts
  • DataSight Administrator

 

Set Permissions

Assign permissions to a user or group

  1. Click Security. The Security window will open.
  2. Select the Users or Groups radio button.
  3. Select the User or Group and click Permissions. The Permissions window will open.
  4. Checkboxes can be ticked to (grant) or (deny)  the ability to use various DataSight features, or to View/Use, Create, Modify and Delete various user generated files or data. If a grant or deny checkbox is not selected, then the user or group is neither granted nor denied the permission.
  5. Click OK to save.

Note

1.       If a permission is neither granted nor denied, then the default setting for that permission is denied until set.

2.       Deny anywhere for any user or group overrides all other granted permissions.

For example, consider DemoUser who is a part of group Admin.

a.    If DemoUser is denied permission to execute charts, then regardless of the group permission of Admin to execute charts, DemoUser's  permission remains denied to execute charts.

b.    Likewise if Admin is denied permission to execute calculations, then regardless of DemoUser's user permission to execute calculations, DemoUser's  permission remains denied to execute calculations.

 

Assign row level permissions to a user or group

  1. Click Security. The Security window will open.
  2. Select the Users or Groups radio button.
  3. Select the User or Group and click Permissions. The Permissions window will open.
  4. Click the User Restrictions tab to access the row level permissions.
  5. Assign permissions within either the User Restrictions by Level or User Restrictions by Flag sections.
  6. Checkboxes can be ticked to grant or cleared to deny permissions for viewing, creating, modifying or deleting data associated with the specified Level One (and sub-levels) and/or Flag. If a box is not checked, then the user or group is not granted permission to the corresponding data.
  7. Click OK to save.

Note

1.       If a permission is neither granted nor denied, then the default setting for that permission is denied until set.

2.       Deny anywhere for any user or group overrides all other granted permissions.

For example, consider DemoUser who is a part of group Admin.

a.  If DemoUser is denied permission to the Flag 'Raw Telemetry Data', then regardless of the group permission of Admin for accessing data flagged with 'Raw Telemetry Data', DemoUser's permission remains denied and cannot access that data.

b.  Likewise if Admin is denied permission to the Flag 'Raw Telemetry Data', then regardless of DemoUser's user permission, DemoUser's permission remains denied for accessing data flagged with 'Raw Telemetry Data'.

 

Modify a user or group permissions

  1. Click the Users or Groups radio button.
  2. Select the User or Group and click Permissions. The Permissions window will open.
  3. Modify the Permissions and click OK.

 

See also:

  • Modes of User Authentication
  • Accounts
  • View Security History

    • Related Articles

    • Permissions

      DataSight application security allows administrators to enable and disable modules in DataSight for different accounts. As yet, DataSight does not effect true data specific security. The table below details what permissions are able to be granted or ...

    • DSApp Security Permissions

      To be able to configure all DSApp elements in DataSight, users would require the following DataSight application permissions. Permission Execute View/Use Create Modify Delete Datasheets Y Y Y As required Manual Data Entry Y As required Manual Data ...

    • Video: Accounts & Permissions

      This video provides a basic overview of the security settings in DataSight.

    • Database Security

      DataSight database security is a combination of Microsoft SQL Server security coupled with DataSight application security. Both forms of security need to be implemented. DataSight Administrator helps you: Create and authenticate Microsoft SQL server ...

    • Accounts

      DataSight Administrator manages application accounts that may be either a user or a group. A DataSight account is created for each user in DataSight and then users can be assigned to different groups. Both users and groups can have a distinct set of ...