Create and Manage Roles and Permissions

Introduction #

This document provides a comprehensive guide for configuring System Frontier. It includes instructions for setting up roles, adding users, and managing permissions effectively. This guide is designed to be straightforward, making it easy for administrators to follow and implement.

Prerequisites #

Before starting, ensure you have the following:

  • System Frontier installed and accessible.
  • Administrative access to the System Frontier console.
  • A clear understanding of your organization’s role and permission requirements.
  • Access to your Active Directory (AD) groups if applicable.

Steps #

Access System Frontier Settings #

  • Log in to the System Frontier console with your admin credentials.
  • Navigate to the “Settings” section.

Create a New Role #

  • Go to the “Roles” tab and click “Create New Role.”
  • Enter a name for the role (e.g., Help Desk Role).
  • Provide a description (optional but recommended for clarity).
  • Set the Start Page to specify a default dashboard or tool for this role.

Manage Menu Visibility #

  • To restrict menu visibility, toggle the option to remove the main menu for users with this role.

Assign Users to the Role #

  • Navigate to the “Members” tab within the role configuration.
  • Select a domain to search for users.
  • For ease of management, use AD groups instead of individual users. Search for groups by typing keywords (e.g., help) and select the relevant groups.
  • For administrative roles, it’s advisable to add individual users to maintain tight control.

Define Permissions #

  • Go to the “Permissions” tab.
  • Click “New” to add permissions.
  • Select the “Resource Type” relevant to the role’s tasks (e.g., computers, processes, services).
  • Define specific actions allowed (e.g., start, stop, restart services).

Set Resource Filters #

  • Use Resource Filters to specify detailed permissions. For example, to allow starting only SQL services, use a filter like:
    • display name like '%SQL%'
  • Adjust filters to meet your organization’s security and operational requirements.

Configure Permission Scope #

  • Define the scope for permissions to apply only to specific systems or collections.
  • Click “New” under the “Scope” section to create a collection of systems.
  • Save the role configuration.

Import Systems and Create Collections #

  • Import systems into System Frontier if not already done.
  • Create collections based on your organizational structure or operational needs.

Assign Roles to Collections #

  • Revisit the “Scope” section of the role.
  • Assign the appropriate collections to ensure permissions are applied to the correct systems.

Notes #

  • Role Management: Use descriptive names and detailed descriptions for roles to maintain clarity and ease of management.
  • Active Directory Integration: Leveraging AD groups for role assignment simplifies user management, especially in large organizations.
  • Granular Permissions: Utilize resource filters to maintain tight control over what actions can be performed and on which systems.
  • Expiration Dates: Set expiration dates for roles that are project-specific or for temporary users to automate access removal.
  • Documentation: Maintain internal documentation for all role configurations and permissions for audit and troubleshooting purposes.

Conclusion #

Following these steps will help you configure System Frontier roles and permissions effectively. Proper configuration ensures secure and efficient management of your IT environment. For further assistance or advanced configurations, refer to the System Frontier documentation or contact support.

Powered by BetterDocs