Understanding Power Users (Release 5.3 and beyond)

For Power User Security in earlier releases, see Understanding Power Users (prior to Release 5.0)

Power Users (PUs) have many of the same capabilities as Admins.  These Privileges and Permissions are acquired in one of the following manners:

  • Automatically granted to all PUs
  • Inherited from assigned Group(s)
  • Explicitly assigned to the PU
  • Received as a by-product of Edit Access to a Category, element or Dataset/User Map

Key functionality that PUs cannot perform include:

  • Create new Users
  • Maintain system parameters
  • Manage resources, including these objects that Admins accesses via their Admin menu:
    • Templates
    • Most Utilities
    • Credentials
    • Charting Options
    • Most Advanced functions

Specific articles cover Power User Security applied to the following objects:

Power User Privileges

Privileges govern functions that a Power User can perform. 

Power Users (PUs) have the same Collaboration, Personal Settings, and Viewer Access Privileges in those Groupings as Regular Users (RUs).  

Some Privileges are "hidden"; i.e., do not have related explicit Privileges, but automatically accrue to every Power User:

  • Ability to create:
    • Elements
    • Targets
    • Event Calendars
    • Manual data points for Metrics
    • Dimensions
    • Categories
    • Bulk add External Reports
    • Tags
    • Bursts
    • Private Notification Schedules
  • Use Non-Configurable Data Sources:
    • Aggregate a Metric
    • External Process
  • Effective with Release 5.5.1, make limited Bulk Changes to Elements directly from the Elements LIst Page; for details, see articles related to the List Page Elements

In addition, there is a "Power User Content Security" Grouping of Privileges shown in the image above  allows PU to:

  • Use additional Non-Configurable Data Sources to Create Content using <object>:
    • CSV Files (also required for Manual Entry of Metric Data)
    • With corresponding View or Edit Access to the source object:
      • Dataset
      • Existing Datasets
      • Existing Metrics
      • Single Report
  • Create certain types of objects:
    • Data Collection Triggers
    • Data Dependencies
    • Data Sources
    • Groups
    • Public View (of a Dataset)
    • Slideshows
    • Public Notification Schedules
    • Portal Pages
  • Extend Power User's ability to grant Group or User Access to objects to which PU has Edit Access
    • By Default, PUs may grant access to Groups of which they are Members and to other individual PUs and RUs who are also in the same Groups
    • With extended Privilege, the PU may grant access to ANY Group or individual User to one of more of the following:
      • Category
      • Data Collection Trigger
      • Data Dependency
      • Dataset
      • Dimensions
      • Element
      • Folders (when also has the "Personal Settings" Grouping's Privilege "Create Folders"
      • Notification Schedules [Rel 5.5]
      • Portal Pages [Rel 5.5]

 

Power User Permissions

Permissions govern content that a Power User can access, use or Edit: 

Power Users that create an object automatically receive Edit Access to the object.  Some objects have Use Permission that allows a PU to utilize the object when creating other objects; e.g., Data Sources, Data Collection Triggers, Data Dependencies.  Other objects offer View Access that allow a PU to "see" the content; e.g., Elements, Datasets, Categories.  Edit Access allows the PU to access the object's Editor and, in most cases, grant access to Groups or individual Users.

On the various tabs of the Group and User Editor or on individual object Editors using the Permissions button > popup, Use or View or Edit Access can be granted to or inherited by a Power User.

0 Comments

Add your comment

E-Mail me when someone replies to this comment