From 12:00 AM CDT Sunday, October 17 - 11:30 AM CDT Sunday, October 17, will be undergoing system upgrades that may result in temporary service interruption.

We appreciate your patience as we improve our online experience.

Table Of Contents

Managing Roles and Permissions

Last Modified: August 30, 2021

Manage roles with differing levels of permission for editing or accessing your InsightCM system.

Before you begin, integrate your InsightCM system with your Windows Active Directory.

Assign individual users to roles with specific permissions in the InsightCM web application to ensure each user has the appropriate level of access.

  1. Click the Navigation menu »Options.
  2. In the Options dialog, click Roles and Permissions under the Security category.
  3. Click the Role pull-down menu and select an existing role. a list of permissions assigned to that role populates in the Permissions field below the pull-down.
  4. Click Add next to the Permissions field to assign an additional permission to the role.

    For a description of each permission, refer to the List of NI InsightCM Web Application Permissions.

  5. Click Add next to the Active Directory Roles field to associate one or more Active Directory role with the InsightCM role.
  6. Enter each Active Directory account that you want to add to the InsightCM role, or use the Browse LDAP by user for groups button to find which Windows accounts are recognized by the web application.
  7. Click OK to exit the Active Directory Role dialog, verify that the correct Active Directory account(s) appear in the Active Directory Roles field, and click OK.
Any Active Directory user you associated with this InsightCM role has the corresponding permissions.

If you assign an Active Directory user to multiple InsightCM roles, the user receives the permissions of all associated roles.

After assigning Windows Active Directory users to InsightCM roles, return to the LoginAuth.json file and set DisableBuiltinAccounts to true and remove the stored LDAPServiceAccountUserName and LDAPServiceAccountUserPassword.

Unless you disable built-in roles, users can log into the web application by entering the name of a role and no password.

Recently Viewed Topics