Understanding Power Users

Power Users (PUs) have many of the same capabilities as Admins.  These Privileges and Permissions are acquired in one of the following manners:

  • Automatically granted to all PUs
  • Inherited from assigned Group(s)
  • Explicitly assigned to the PU
  • Received as a by-product of Edit Access to a Category, element or Dataset/User Map

Key functionality that PUs cannot perform include:

  • Create new Users
  • Maintain system parameters
  • Manage resources, including these objects that Admins accesses via their Admin menu:
    • Templates
    • Most Utilities
    • Credentials
    • Charting Options
    • Most Advanced functions

Specific articles cover Power User Security applied to various objects.  These are all found in the Manual "Controlling Access within Metric Insights".

Power User Privileges

Privileges govern functions that a Power User can perform. 

Power Users (PUs) have the same Collaboration, Personal Settings, and Viewer Access Privileges in those Groupings as Regular Users (RUs).  

Some Privileges are "hidden"; i.e., do not have related explicit Privileges, but automatically accrue to every Power User:

  • Ability to create:
    • Elements
    • Targets
    • Event Calendars
    • Manual data points for Metrics
    • Dimensions
    • Categories
    • Bulk add External Reports
    • Tags
    • Bursts
    • Private Notification Schedules
  • Use Non-Configurable Data Sources:
    • Aggregate a Metric
    • External Process
  • Make limited Bulk Changes to Elements directly from the Elements LIst Page; for details, see articles related to the List Page Elements

In addition, there is a "Power User Content Security" Grouping of Privileges shown in the image above  allows PU to:

  • Use additional Non-Configurable Data Sources to Create Content using <object>:  (Explained in Step 2 below)
    • CSV Files (also required for Manual Entry of Metric Data)
    • With corresponding View or Edit Access to the source object:
      • Datases
      • Datasets created by joining Datasets using SQL
      • Existing Metrics
      • Single Report
  • Create certain types of objects, including::
    • Alerts
    • Announcements
    • Bursts
    • Folders
    • Data Collection Triggers
    • Data Dependencies
    • Datasets/User Maps
    • Data Sources
    • Email Templates
    • External Content Types
    • Favorites
    • Folders
    • FTP Connections
    • Global Documents
    • Groups
    • High Frequency Schedules
    • JavaScript Objects Templates,
    • Managed Alert Workflows
    • Public View (of a Dataset)
    • Shared Views
    • Slideshows
    • Public Notification Schedules
    • Portal Page Objects
  • Extend Power User's ability to grant Group or User Access to objects to which PU has Edit Access
    • By Default, PUs may grant access to Groups of which they are Members and to other individual PUs and RUs who are also in the same Groups
    • With extended Privilege, the PU may grant access to ANY Group or individual User to one of more objects, including:
      • Announcements
      • Bursts
      • Category
      • Data Collection Trigger
      • Data Dependency
      • Data Sources
      • Dataset
      • Dimensions
      • Element
      • Email Templates
      • Folders
      • JavaScript Templates
      • Managed Alert Workflows
      • Notification Schedules
      • Portal Pages

 

New Privileges are added with almost every release.  The list above is not exhaustive. Review Admin > System > Privileges List Page for all current Privileges.

1. Power User Permissions

Permissions govern content that a Power User can access, use or Edit: 

Power Users that create an object automatically receive Edit Access to the object.  Some objects have Use Permission that allows a PU to utilize the object when creating other objects; e.g., Data Sources, Data Collection Triggers, Data Dependencies.  Other objects offer View Access that allow a PU to "see" the content; e.g., Elements, Datasets, Categories.  Edit Access allows the PU to access the object's Editor and, in most cases, grant access to Groups or individual Users.

On the various tabs of the Group and User Editor or on individual object Editors using the Permissions button > popup, Use or View or Edit Access can be granted to or inherited by a Power User.

2. Privileges and Permissions control Data Sources available to Power User when creating a new element

When a Power User creates a new element, the following contents in the Data Source drop-down list include:

  1. Two non-configurable Data Sources automatically granted to all Power Users:  Creating an element with data from an "External Process" or using the feature to "Aggregate a Metric"; these cannot be taken away from a Power User
  2. Other non-configurable Data Sources that the Power User has been granted the release Create Content Privileges  inherited from the Group(s) to which the Power User belongs
  3. Any configurable Data Source that the Power User has been granted Permission to use or Edit in fetching data for a new element or editing an existing element to which the Power User has Edit Access

NOTE:   Configurable Data Sources are SQL or Plug-in based and defined by a customer Admin using the associated Data Source Editor.  Non-Configurable Data Sources are the six shown below the dotted line in the image above, and require no customer action to initiate....they are delivered with Metric Insights.