We are pleased to introduce another useful feature based on user feedback: Resource Based Access Control, or RBAC for short (we’re still tweaking the abbreviations).
With RBAC, it is possible to grant users in an organization access to certain devices without this user also being able to see or use other devices – and this Proficloud.io-wide. In this way, we are developing Smart Services in a direction that is particularly in demand in industry and SMEs, where data security and access rights in the required elements are high on the wish list.
In the future, all admins will be able to, or will have to, distribute access at user level in their organization. Here, a granular decision can be made for each device and each user individually as to whether they need access to a specific device.
By default, a new user who is not an administrator does not have access to devices and must first be granted these rights by a user with the “Admin” role.
A newly added device, after being added to the organization, must be shared with the users who will have access to it by an admin.
All existing users in existing organizations will have access to all devices within the organization at the launch of the new feature.
So nothing changes at launch with the new feature.
Check out the FAQs for the Ressource Based Access Control (RBAC)
In addition to the role, the user also needs the authorization to view and use individual devices (or all devices). In User Management, navigate to the invited user and assign the permissions there under the “devices” tab.
As an Admin you can add devices and also see all devices of your organization by default. For non-Admin users you can fine granualary adjust who has access to which device. It might be that your colleague is not an admin and has not got the permission to access the added device.
To do this, simply visit the User Management Service and assign the authorization for the device to your colleague.
You can change access rights as an admin at the user level in the User Management Service.
- Open Proficloud.io and log in
- Open the User Management Service (on the main navigation)
- Navigate to the user whose permissions you want to change for the devices
- Open the “Devices” tab of the user
- Click Assign Devices and select the devices you want the user to have access to.
- Save the settings and you are done.
RBAC (Resource Based Access Control) is automatically enabled for all users. As an admin of an organization, the settings in the User Management Service can be changed at user level.
At the time of RBAC implementation, all users are granted access to all devices, so nothing changes for existing users. Access rights to individual devices can then be removed again for individual users.
With resource-based access control, permissions to individual devices can be assigned granularly for individual users. For example, an admin can give a user (regardless of their role) access to one or more devices that can then be used in all Smart Services (based on their role).
Create your free Proficloud.io account today!
Don’t habe an account now? Sign up for free on Proficloud.io – the Industrial Internet of Things Platform of Phoenix Contact.