Applies to: entitylist, labels

Entity Permissions

Entity permissions in MOPS 4.0 are used to control access to entities in the system. Permissions are assigned to roles, allowing you to manage who can view, edit, or delete entities.

Entity Permissions Overview

Each entity in the system has a set of permissions that determine what actions can be performed on it. These permissions are typically managed through the Entity List, where you can view and modify the permissions for each entity.

Permissions for an entity is given to a role, and the role is assigned to an account. This means that you can have multiple roles with different permissions assigned to an account, allowing for flexible access control.

Information on roles and permissions can be found in the Managing Roles section. Detailed information on permissions can be found in the Operations section.

A best practice is to assign permissions to folders in the directory, and then allow entities within those folders to inherit the permissions. This way, you can manage permissions at a higher level and avoid having to set permissions on each individual entity.

Editing Permissions of Entities

To edit the permissions of an entity, you can use the Entity List. The Entity List allows you to view the entities in the system and their associated permissions. You can filter the list to show only entities of a specific type, such as Displays, Dashboards, or Trends.

To edit the permissions of an entity, follow these steps:

  1. Open the Entity List by selecting the Entities menu option in the system menu at the top right of the main application. Or, select the Configure «Type» command from the context menu of the entity in the Directory Explorer. This will open the Entity List with the selected entity in the details panel.
  2. In the Entity List, with the entity for which you want to edit permissions.
  3. Click on the pen, on the Permissions setting in the details panel. This will display the current permissions for the entity.

The opened Permissions modal displays the current permissions for the entity, allowing you to view and modify them. The permissions are displayed in a table format, showing the role and the permission granted to that role for this entity.

The top part of the modal show inherited permissions, while the bottom part shows the permissions that are set specifically for this entity. The inherited permissions are shown as read-only format and cannot be modified directly. If you want to change the inherited permissions, you need to modify the permissions at the parent level in the directory.

At the top of the modal you also have an option to choose whether to inherit permissions from the parent entity or not. It is recommended to keep the inheritance enabled, unless a child level should have less permissions than the parent level.

To add a new permission, click the Add Permission ⊕ button. This will add a new row to the bottom part of the form. This row will contain a drop-down list for selecting the role and a a permission to be granted to that role.

To remove a permission added to the entity, click the Minus ⊖ icon next to the permission.