Documentation for Axxon One 1.0.

Previous page Cyclical macros  Creating and configuring roles Next page

In Axxon One, every user has permissions based on his role.

By default, there is one role (admin) and one user (root). The root user belongs to the admin role and has rights to configure all components of the video surveillance system. To add a user with individual permissions, create a new role with the necessary permissions and then create a new user account.

Note

Only admin users can create other admin role users.

Roles and users can be added and configured in Settings, on the Users tab.

There are two types of users: local (stored in the Server database) and LDAP (see Connecting LDAP users).

To enable LDAP users, you must configure access to LDAP catalogs.

The actions of all system users are recorded in the system log (see The System Log).

Note

The following user actions are logged:

  • login and log out of the Client;
  • unsuccessful login attempt;
  • adding, editing and removing hardware settings, archive or detectors;
  • creating, editing and removing macros;
  • adding, editing and removing user permissions;
  • alarm initiation triggered by video camera;
  • arming and disarming the video camera;
  • controlling a PTZ camera;
  • creating and editing comments;
  • exporting frames and video recordings.

In all user-specific events, the user IP address is indicated.

Types of user permissions to hardware, archives and macros

In Axxon One, it is possible to set user permissions both for a specific device and for a group of devices. Specifics of object and group permission types are described in the table below.

User permission typeUsagePriority
Object

Configuring access to a specific device, archive or macro in the system

Highest
Group

Configuring access to all cameras added to a group (see Creating a Group object).

Priority below Object permissions

Note

  • If the camera belongs to several groups with different access levels assigned to them, the user permissions with the highest access level are used.
  • If the camera belongs to a child group, then the permissions defined for the child group will take precedence when determining access to the camera
Default

Configuring access to all devices, archives or macros that will be created in the system.

If Group or Object rights are not assigned to the device after its creation, then the default permissions are applied.

Priority below Group permissions
  • No labels

Creating and configuring roles

Connecting to an LDAP catalog

Working with users

Configuring the user security policy