Understanding Power Users (Release 5.3 and beyond)

For Power User Security in earlier release, see Understanding Power Users (prior to Release 5.0)

Power Users (PUs) have many of the same capabilities as Admins.  These Privileges and Permissions are acquired in one of the following manners:

  • Automatically granted to all PUs
  • Inherited from assigned Group(s)
  • Explicitly assigned to the PU
  • Received as a by-product of Edit Access to a Category, element or Dataset/User Map

Key functionality that PUs cannot perform include:

  • Create new Users
  • Maintain system parameters
  • Manage resources, including these objects that Admins accesses via their Admin menu:
    • Templates,
    • Most Utilities
    • Credentials,
    • Charting Options
    • Portal Pages
    • Most Advanced functions

Specific articles cover Security applied to the following objects:

Power User Privileges

Privileges govern functions that a Power User can perform.

Power Users have the same general Privileges as Regular Users (RUs).  Each new PU receives the Access Target View Privilege.  

Some Privileges are "hidden" but automatically accrue to every Power User:

  • Ability to create:
    • Elements
    • Targets
    • Event Calendars
    • Manual data points for Metrics
    • Dimensions
    • Categories
    • Bulk add External Reports
    • Tags
    • Bursts
  • Use Non-Configurable Data Sources:
    • Aggregate a Metric
    • External Process

In addition, there is a "Power User Content Security" Grouping of Privileges only available for "all" or individual assignment to PU's.  This Grouping allows PU to:

  • Use additional Non-Configurable Data Sources to Create Content using <object>:
    • CSV Files (also required for Manual Entry of Metric Data)
    • With corresponding View or Edit Access to the source object:
      • Dataset
      • Existing Datasets
      • Existing Metrics
      • Single Report
  • Create certain types of objects:
    • Data Collection Triggers
    • Data Dependencies
    • Data Sources
    • Groups
    • Public View (of a Dataset)
    • Slideshows
  • Extend Power User's ability to grant Group or User Access to objects to which PU has Edit Access
    • By Default, PUs may grant access to Groups of which they are Members and to other individual PUs and RUs who are also in the same Groups
    • With extended Privilege, the PU may grant access to ANY Group or individual User to one of more of the following:
      • Category
      • Data Collection Trigger
      • Data Dependency
      • Dataset
      • Dimensions
      • Element
      • Folders (when also has the "Personal Settings" Grouping's Privilege "Create Folders"

 

Power User Permissions

Permissions govern content that a Power User can access, use or Edit:

Power Users that create an object automatically receive Edit Access to the object.  Some objects have Use Permission that allow a PU to utilize the object when creating other objects; e.g., Data Sources, Data Collection Triggers, Data Dependencies.  Other objects offer View Access that allow a PU to "see" the content; e.g., Elements, Datasets, Categories.  Edit Access allows the PU to access the object's Editor and, in most cases, grant access to Groups or individual Users.

On the various tabs of the Group and User Editor or on individual object Editors using the Permissions button > popup, Use or View or Edit Access can be granted to or inherited by a Power User.

0 Comments

Add your comment

E-Mail me when someone replies to this comment