User Management and RBAC

Introduction

User Management in vuSmartMaps is your key to managing user access securely and efficiently. This section provides you with the tools to control who can access what within the vuSmartMaps platform, ensuring a smooth and secure experience.

In vuSmartMaps, each user is assigned specific permissions based on their role. These permissions determine what they can do and see in the platform, aligning access with organizational needs.

Role-Based Access Control (RBAC) plays a pivotal role in this process. With RBAC implementation in vuSmartMaps, users are mapped to roles, and roles are assigned specific permissions. This approach allows for selective granting of access, ensuring that only authorized users can access designated functions, resources, or information. RBAC acts as a protective shield, detecting and blocking unauthorized access while seamlessly allowing authorized users to perform their tasks.

Key Benefits of User Management

Let's explore the key benefits that User Management brings to your vuSmartMaps experience:

• Role-Based Access Control (RBAC): We use RBAC to let you grant access selectively. This ensures that only authorized users can access specific functions, resources, or information.
• Preventing Unauthorized Access: RBAC acts as a protective shield, detecting and blocking unauthorized access while allowing authorized users seamless access during their work.
• Granular Permissions: Every feature and REST API within vuSmartMaps is mapped to specific permissions. Users with these permissions can use the associated features, giving you precise control over who accesses what.
• Efficient User Role Management: Create and manage user roles as needed, making access management across teams or divisions efficient. Our system maps each user to predefined roles, each with its set of permissions. This simplifies access management, aligning it with your organizational structure.
• Streamlined User Account Administration: User Management offers a user-friendly way to manage accounts, from adding and modifying users to considering their roles and permissions.
• Enhanced Security: User Management enhances the security of your vuSmartMaps environment. With RBAC, you can efficiently manage access by grouping users into predefined roles, saving time and effort.
• Precise Control: RBAC allows for precise control over user access by mapping permissions to specific features and resources, ensuring users only access what's relevant to their roles.
• Compliance and Data Protection: Aligning access with RBAC principles helps you meet industry regulations and data protection requirements. It safeguards sensitive information and maintains data integrity in vuSmartMaps.

In summary, User Management empowers you to optimize user access, maintain security, and manage user permissions efficiently within vuSmartMaps. It's a crucial component for a secure and well-organized user experience.

Navigating through User Management

1. The User Management page can be accessed from the platform left navigation menu by navigating to Account Management > User Management.
2. Once you're in the User Management section, you'll find two primary tabs on the landing page:
   1. Users
   2. Roles

3. The users' page lists the existing users and their details. The operations related to the users can be done from this tab.
   1. Creation of a new user
   2. Deleting a user
   3. Updating the user’s password
   4. Updating the user’s default homepage and Roles
4. The roles page lists the various existing user roles and permissions associated with them. The operations related to the Roles can be done from this tab.
   1. Creation of new Roles
   2. Deleting Roles
   3. Assigning Role permissions
   4. Updating its default homepage
   5. Managing User-specific Views
   6. Managing Object-level Permissions

FAQs

Do I need to create local users if we are using AD/LDAP?

If your organization is using AD/LDAP for authentication, you typically do not need to create local users. The system will use the existing directory services to manage user authentication. Admin users can integrate vuSmartMaps with LDAP, ADFS.

How can users reset their password if forgotten?

Users can reset their password by clicking the "Forgot Password" link on the login page. They will need to follow the instructions sent to their registered email to reset their password. Alternatively, an admin user with the write permission to the User Management module can reset your password.

I have only view access, how do I change my password?

Even with view access, you can change your password by going to your profile settings. Click on your profile picture or name in the top right corner, select "Change Password," and follow the instructions.

However, you will only be able to change your password if your role has the changePassword permission enabled.

If not, the "Change Password" option will appear disabled with a tooltip: "You do not have permission to change password." You can contact the admin in case of absence of permissions.

I'm encountering "permission denied" when accessing alerts. What should I do?

If you receive a permission denied message when accessing some particular module, contact your system administrator. They can review and adjust your permissions to ensure you have the necessary access.

Will my user account be locked after entering the wrong password multiple times?

No, your user account will not be locked if you enter the wrong password. There are currently no limitations in place regarding the number of incorrect password attempts allowed.

Can I import users in bulk using a file?

No, we do not currently have a feature to import bulk users. However, you can integrate AD/LDAP for authorization if your organization supports this, enabling Single Sign-On (SSO).

How can I add new users to vuSmartMaps?

You can add new team members by navigating to the User Management section and clicking the “+” button on the Users tab to create a new user profile. Assign appropriate roles and a default homepage for web/mobile, and set the Role for Data Store Access Control.

How can administrators configure the default home page for both the Web and Mobile App versions in vuSmartMaps?

Administrators can configure the default landing page for users and roles under Select HomePage. The home page can be different for web and mobile apps. User-specific homepage takes precedence over role-specific homepage.

How can I configure data access restrictions in vuSmartMaps? For instance, how can I set it up so that only admin users have access to all data, while UPI users are limited to viewing only data related to the UPI application?

While creating or editing roles, you can configure user-specific views to define Data Access Policies and Record-Level Policies to configure access. You can allow or deny access to specific data sets like Traces, Logs, Metrics, etc., and even set restrictions based on column values.

How can I create a role with permission to create users?

Post creating a new user role, you can click on the Edit Role Permissions icon in the 'Action' column in the User Role listing table. In this, you will find 'User Management' as one of the permissions. You can enable the read or write permissions based on your need and save your preferences.

What are object-level permissions in vuSmartMaps and how do they work?

Object-level permissions allow fine-grained access control to specific dashboards, reports, alerts, and other objects. Admins can assign View, Modify, or None permissions for each object per role. This enhances data governance by ensuring only authorized roles access specific objects.

Can I assign permissions to multiple objects at once?

Yes. Using the Bulk Permission Management feature, administrators can assign or modify permissions for multiple objects across modules like Alerts, UTM, Reports, etc., from a centralized interface. This saves time and ensures consistency in access control.