Table of Contents
- Managing Admin Accounts
- Managing Admin Groups and Permissions
- Configuring Extended Admin Authentication
- Viewing the Audit Logs on Admininistrator Actions
SSH Tectia Manager allows basically two types of administrators, superusers who have the full permissions to do anything, and administrators with varying permissions set for their admin groups.
A special case of administrators are user account administrators. Superusers can create an admin group with the rights to edit the permissions of other administrators, except those of superusers. The user account administrators can then edit the permissions of anyone who does not have this privilege, except they cannot elevate their own permissions or raise normal administrators to the user account administrator level.
SSH Tectia Manager uses a two-stage process for managing SSH Tectia administrators. Permissions to perform actions are given to admin groups and an administrator may be a member of any number of groups. To have any rights at all, an administrator must be a member of at least one admin group.
To add administrators to the system:
Note that the menus of the web-based administration interface will change depending on the access rights defined for the administrator. After creating a new admin account and assigning it to the admin groups, test the account to see that all required menus are visible and actions permitted.