Jump to content

User manager tool

From SpinetiX Wiki
(Redirected from User access rights)
Note  
This page is related to Control Center and applies to all DSOS players.

Introduction

The user management tool allows you to modify your profile, and, if you have the admin rights, of other users and some extra security settings. To access this tool, click the user icon on the top bar.

From the left-side menu, you can access the following pages:

For full screen, see this video on Vimeo.

Profile

Profile
Profile

The Profile page is shown by default when clicking the user icon within the top bar menu. It allows changing your user password and selecting the language used by the content management tools.

  • To be able to change your password, you need to enter the old password - without it, only a user with admin rights can perform the password change.
  • There are 13 languages to choose from - by default, the language is set to "Automatic", which uses the browser language to select the interface language.

User Management

Note  
This is available to all DSOS players, except DiVA, and requires the admin right.
User Management - HMP
User Management - HMP

This page allows admins to perform the following actions:

  • Create new users → click the "New" button and enter the username, the password (twice), and the access rights.
  • Modify existing users → click the pen button next to a user, and update the username, the password, and/or the access rights.
  • Remove users → click the "x" orange button next to a user to delete it.
Note Note:
The SRP icon next to each user indicates whether SRP is activated for that user – it should be a green check; in case a warning icon is shown instead, simply update the user password to enable SRP. For more details, see Server Security section.

User rights

The user access rights govern the methods by which a user can log onto the player and perform different tasks. The permissions to perform certain operations are assigned to specific roles. Members are assigned particular roles, and through those role assignments acquire the permissions needed to perform particular system functions. Since users are not assigned permissions directly, but only acquire them through their role(s), management of individual user rights becomes a matter of simply assigning appropriate roles to the user's account; this simplifies common operations, such as adding a user, or changing a user's access rights.

When creating a new user, the administrator can choose one or more rights to give to that user, from the following:

Security

Disabling any of the following password protections significantly compromises security, so it is strongly advised to keep all of them enabled. To enhance security, it will no longer be possible to turn off password protections in future firmware releases.
Control Center - Security

From this page, a user with admin rights can enable/disable the following security features:

  • Password protect RPC admin
    If disabled, the access to the RPC endpoint no longer requires authorization, thus anybody can send RPC commands to the player.
  • Password protect content publishing
    If disabled, the access to the player content server no longer requires authorization, thus anybody can publish onto that player.
  • Password protect monitoring
    If disabled, the access to the monitoring endpoints no longer requires authorization, thus anybody can access the player's logs, snapshot, and status information.

See also