beautypg.com

Templates, Users, Actions – Grass Valley iControl V.4.43 User Manual

Page 312: Templates users actions

background image

Access Control

Templates

302

Templates

Each time you add a new resource (card or service), it will obtain a set of default permissions
from a template stored in the LDAP directory. The template is created automatically the first
time you add a new card or service, and can be modified in the Resource Assignment panel
of the Privilege Management window (see

"Assigning Resources"

, on page 331).

Templates are particularly useful for cards, allowing you to define the basic permissions for all
roles for a certain card type. As new cards (of the same type) are added, they copy the
permission set.

Users

A user is an individual registered in iControl, usually attached to a single domain. A user is
designated by a UID, followed by the @ symbol, followed by a domain
(e.g.

[email protected]

).

A user can access resources in his/her own domain or any domain below on the condition that
permission is given to that user at the domain level. To access a domain, the user has to be
authenticated by providing a password.

Actions

Actions are used to define what can be done on a resource that requires access control.
Typically every resource type will have a set of possible actions assigned to it. For example,
there are two actions that can be associated with a Web page: edit and delete.

It is important to distinguish between actions that apply to particular resources and actions
that are more general. For example, the editGroups action does not apply to a particular group,
but refers to the capability of a user to edit all groups. For that reason its resource type is
domain. On the other hand, the viewWebPage action can be applied to a specific Web page, so
its resource type is Webpage.

Currently, actions are assigned in either iC Navigator or iC Creator (see

"Assigning Resources"

,

on page 331).

The table below lists actions that can be used to assign permissions. The user readable name is
what is visible on screen, as are the action categories, which correspond to folders:

Resource

Unique ID

Type

Domain

Densité card

dev4.icontrol.com_H_Densité_SLOT_1_31

DEC-1002

myCompany.com

Web page

http://10.2.0.251/icw/sites/SkyAssure2.0
.0.0_0007/Web_pages/home.mpf

webpage

myCompany.com

This manual is related to the following products:
See also other documents in the category Grass Valley Equipment: