The SilverBack monitoring system enables you to control user access and what they can see (visibility) by explicitly granting specific privileges to User Groups. By creating users and then placing those Users into the defined User Groups you can control precisely what objects SilverBack users can view, and upon which they can perform operations. You can also use this feature to manage the access and visibility of your own NOC employees.
There are four key elements that define how users access the SilverBack system:
User - A person who receives notifications and/or has direct access to the Web Dashboard.
User Group - A set of users who are granted a set of privileges.
Privilege - A right that can be granted (e.g., the right to create Thresholds). A privilege can be considered as an operation applied to an object. For example, the privilege to create Thresholds can be described as the Create operation applied to the Threshold object.
Privilege Group - A set of privileges that are granted to a User Group.
In addition, there are four default Privilege Groups defined in the SilverBack Managed Services Platform:
Administrator - The Administrator has the ability to view all reports within the system, and has rights to add, modify and delete configurations and Managed Assets.
NOC Operator - The NOC Operator has ability to view all reports within the system, and has access to tools to diagnose faults, and manages all assigned faults.
Report Analyst - The Report Analyst has the ability to view all reports within the system, and can schedule additional reports as needed.
Customer - The Customer has the ability to view selected reports within the system.
These default Privilege Groups reside in the System Management Domain, and are therefore visible but not user-editable. They can, however, be copied into lower level Management Domains for modification and deployment of custom Privilege Groups.
For the purposes of this FAQ we will assume that you have users already created, and now you want to limit their activities in the SilverBack system. Further, we will assume that your privilege needs are broadly met by the default Privilege Groups and User Groups.
This topic takes you through the following procedures:
From the Users category page click on the Browse Privilege Groups link to display the Privilege Groups report.
Click on one of the default Privilege Groups, and then select the More > Show > Privileges option.
Determine if those privileges broadly meet your needs for the user. If not, click on the Back button, and perform Step 2 on a different default Privilege Group.
Once you have found an appropriate Privilege Group you can copy it to your Service Provider Management Domain.
From the Users category page click on the Browse Privilege Groups link to display the Privilege Groups report.
Click on the desired Privilege Group, then select the More > Copy To option.
Click on the radio button corresponding to the Management Domain to which you want to copy the Privilege Group, then click on the OK button.
The display refreshes to the Privilege Groups report, and shows the copied Privilege Group in its parent Management Domain.
From the Users category page click on the Browse User Groups link to display the User Groups report.
Click on a User Group, and select the More > Show > Privilege Groups Containing option.
Determine if those privileges broadly meet your needs for the user. If not, click on the Back button, and perform Step 2 on a different User Group.
Once you have found the appropriate privilege level you can edit the User Group to reference the previously-copied Privilege Group.
From the Users category page click on the Browse User Groups link to display the User Groups report.
Click on a User Group, and then click on the Edit button to display the Edit User Group form.
Select the copied Privilege Group from the Privilege Group drop-down, then click on the Save button.
Click on the Users tab.
Choose a user to include in the User Group by clicking on the Select Targets radio button, then expanding the hierarchy until you find the user(s) you want to add.
Click on those users' corresponding checkbox(es), then click on the Save button.
The selected user(s) will now have only the privileges they inherit from their referencing User Group and Privilege Group.
