Manage Users (Workspace-menu)

The tabs that are available for Manage Users option in the workspace menu are described below.

My Roles

The users can verify their assigned privileges on the My Roles tab.

myroles_1

The information displayed on the My Roles tab are explained below:

FieldDescription
RolesPrivileges assigned to the user for the role(s) selected from this list can be viewed in the Privilege section.

Privilege

Revoked: You will not be able to perform the revoked action(s). Request your System Administrator to allow any revoked privilege(s) that you may need.

Allowed: You will be able to perform the allowed action(s) unrestricted.

Denied: You will not be able to perform the denied action(s).

WorkspaceThe role privileges for features: Summary, Audit, Project, Register Image and Connections will be visible in the Workspace section.
ProjectThe role privileges for features: Models, Register Entities, Data Validation, Workflow, Version Control, Import Export Entities, Sandbox, Pipeline, Processor Group, Compute Environment, Dataset and Applications will be visible in the Project section.

LDAP

The LDAP tab on the workspace listing is divided in two parts, Global LDAP Groups and Custom LDAP Groups.

The Global LDAP Groups will contain the list of LDAP groups and the roles assigned by the superuser. They cannot be deleted from the Actions column.

The Custom LDAP Groups will contain the list of LDAP groups and roles assigned at the Workspace level. They can be deleted from the Actions column.

The steps and configuration to add custom LDAP groups and roles is same as mentioned in the table for Global LDAP groups which is given in Manage Users (Main Menu) topic.

llap_2

Roles

The Roles tab contains the list of Global roles (created by superuser through the main menu) and custom roles (added through the workspace menu).

The Global roles listed on this tab cannot be deleted from the Actions column.

The steps and configuration to add roles is same as mentioned in the Manage Users (Main Menu) topic.

roles_3

Users

The Users tab contains the list of users.

The options and functionality are same as described in the Users section of the Manage Users (Main Menu) topic.

users_4

Groups

A number of users that are registered in Gathr can be combined in a group to manage assignment of privileges for the entire group from Groups tab.

groups_5

Listing Page

The information and actions displayed on the Groups listing page are explained below:

FieldDescription
NameName of the group created.
MembersTotal count of the users in the group.
RolesType of roles assigned to the group.
ActionsOptions to edit or delete the group.

Add Groups

The groups can be created using the New Group option given on the top right side of the Groups tab.

The configuration details for creation of a new group are described in the table given below:

New Group

The New Group section is divided in two parts, Users and Set Privileges.

Each of them is explained in detail below.

Users

Any number of users that exist in Gathr can be registered using the Add Users to Group option.

Either the users can be added from the given list or a CSV file having the list of users can be uploaded and validated.

Set Privileges

FieldDescription
Select Roles

Privilege(s) of the role(s) selected will instantly load in the Set Privilege section.

For any privilege conflicts, load preference is given to Deny > Allow > Revoke.

Deny privilege(s) strictly remain unchanged, whereas any additional privilege changes appear as ‘Direct Privileges’ on the listing page.

Set Privileges as Role

For the privilege(s) that are selected and set, a new role can be created using this option.

If user clicks on SET PRIVILEGES AS ROLES option, a new window will pop up with options to provide the role name and description and thereby register the role.

Set Privilege

Select and set the role privilege(s), or instantly load privilege(s) of the existing role(s) and user(s) with configuration options explained above. Possible options to set privileges are:

Revoke: Set by default. User(s) assigned with this role will not be able to perform the revoked action(s).

Allow: User(s) assigned with this role will be able to perform the allowed action(s) unrestricted.

Deny: User(s) assigned with this role will not be able to perform the denied action(s).

Revoke and Allow can be changed to any other privilege as required (by providing direct privilege) when the existing roles are later mapped to user(s). But, Deny privilege(s) strictly remain unchanged.

WorkspaceIf the role privileges are customized in the Set Privilege section, then the privilege settings for features: Summary, Audit, Project, Register Image and Connections can be done in the Workspace section.
ProjectIf the role privileges are customized in the Set Privilege section, then the privilege settings for features: Models, Register Entities, Data Validation, Workflow, Version Control, Import Export Entities, Sandbox, Pipeline, Processor Group, Compute Environment, Dataset and Applications can be done in the Project section.
Top