Users
The following tables list the tasks that users can perform on users.
Users can be assigned to departments and they can have a public or private visibility. Granting a user private visibility means he can be added to public and private groups that have been in his own department and the departments that his department administrator can manage, he can be set as the authorized user of transfer definitions that have been in his own department and the departments that his department administrator can manage, and he can have a server credential created for public and private servers in his own department and the departments that his department administrator can manage. Granting a user public visibility means he can do what a private user can do and can be added to a public group assigned to another department, set as the authorized user of a transfer definition that is assigned to another department and he can also have a server credential created for a public server assigned to another department. User IDs must be unique throughout the system, thus users in different departments cannot have the same user ID. A user can belong to only one department in the system.
UpdateTransferUserRight enables a user to update users who have only TransferRight. ViewUserRight enables a user to view users.
| Administrator | Task |
|---|---|
| Department Administrator | Creates users with TransferRight (default) who are automatically assigned to the administrator’s department. Department Administrator can also create users who are assigned to the administrator’s department or the department that he can manage, and who can have any one of the system administrative rights within the department. This means department administrators cannot create super administrators, but he can create another administrator for his department. The user’s visibility can be set to public or private. Setting visibility to public will make this user visible and available for other department administrators in the system. |
| Super Administrator | Same as department administrators but the user can be assigned to any department in the system or to none at all. Super administrators can create super administrators and department administrators, as well as users with any available rights. If a user is not assigned to a department, the user gains no special properties. This means that the user can only be administered by super administrators. |
| Administrator | Task |
|---|---|
| Department Administrator | Using this feature, a department administrator can create a new user who is automatically assigned to this administrator’s department. The new user can be created only from a pre-existing user from this department or the department that he can manage. The new user will automatically be given rights depending on the user that is being used as a template. However, Department administrators cannot give the new user any rights that he does not have. For example, A department administrator who only has AdministratorRight cannot assign UpdateServerCredentialRight to a new user. |
| Super Administrator | Using this feature, super administrators can create a user who can be assigned to any department in the system or to no department at all. The new user can only be created from any pre-existing user in the system and will be given all the rights that the existing user possesses. |
| Administrator | Task |
|---|---|
| Department Administrator | Updates users who have been in the administrator’s department and the departments that the administrator can manage.
Department administrators can change the department to which that the user is assigned to their own departments or to any departments that they can manage. Visibility of the user can be changed to public or private by the department administrator. |
| Super Administrator | Lists, updates and deletes all users in the system. The department that the user has been assigned to can be changed to any department in the system or to none at all. Visibility of the user can be changed to public or private. |