SSH Tectia

Managing Admin Groups and Permissions

Admin account groups and permissions are managed on the Manage admin groups and permissions page. To access the page, click Settings → Admin groups. On this page, new admin groups can be created, and existing ones can be edited and removed. Members and permissions of admin groups can be edited.

There are two main types of access-controlled management actions that admins can perform with the SSH Tectia Manager administration interface:

Permissions to perform actions are given to admin groups. Each group has permissions to perform the selected global actions and host-group-specific actions to selected hosts. One admin account can be a member of any number of admin groups.

Admin groups and permissions

Figure 4.3. Admin groups and permissions

There is one built-in and read-only admin group called Superusers. Members of this group are superusers, and have the permission to do anything. The initial superuser account configured with the initial configuration wizard is added to this group. Members can be added to and removed from the group, but the last member cannot be removed to ensure there is always at least one working superuser account.