User and Group Management

Role-Based Access Control (RBAC)

CYBERQUEST implements Role-Based Access Control (RBAC) to manage user permissions through predefined roles. This security model allows administrators to: - Assign granular permissions to user groups - Control access to web interface components - Maintain consistent access policies across the organization

Administrators can create new roles or modify existing ones to meet specific security requirements.

Create or Modify User Roles

To create or modify user roles:

1.Log in with administrative privileges

2.Navigate to Settings > Users and groups > Groups

3.Create a new group or edit an existing one

4.In the Assigned Permissions field, select appropriate access rights

5.In the Data Permissions field, define data access filters

Roles are always assigned at the group level, not directly to individual users.

To add or edit user roles:

1.Log in to the application with an administrative account.

2.Navigate to Settings by clicking the button on the left side of the interface, then select Users and groups > Groups.

3.The Groups configuration page opens:

4.In the Groups window, click the button to open the group creation form:

• In the Name field, provide a descriptive name (e.g., "Critical Assets Monitoring").

• In the Users field, select the users affected by the predefined rules.

• In the Assigned Permissions field, select appropriate permissions for the selected users.

• In the Data Permissions field, select the data accessible to the selected users.

• By default, new groups are enabled. Deactivate a group by selecting the option.

Press "Save" to create the new group or "Cancel" to discard changes. Alternatively, close the window without saving by clicking the mark in the top-right corner.

Delete User Groups

To delete a group:

1. Navigate to Settings by clicking the button on the left side of the interface, then select Users and groups > Groups.

2. Click the button next to the desired group and confirm deletion.

Note: This procedure is irreversible. Built-in groups cannot be deleted.

Edit User Groups

To edit a group:

1. Navigate to Settings by clicking the button on the left side of the interface, then select Users and groups > Groups.

2. Click the button next to the desired group.

3. The Edit Group window displays options to modify the group name, users, assigned permissions, and data permissions.

Changing group users, assigned permissions and data permissions is one by selecting or de-selecting objects in each drop-down list.

Press the "Save" button to apply changes and close the window, or press "Cancel" to close the window without saving. Alternatively, the window can be closed without saving changes by clicking the icon in the top-right corner.

You can also change group status being Enabled or Disabled. Group status can be quickly changed from main Groups window by actioning on Active option button and selecting On or Off. In this case, changes are saved automatically.

The group status can be set to either Enabled or Disabled. Changes are made directly from the main Groups window using the Active option button (On/Off) and are saved automatically.

For built-in groups, only adding or removing users is permitted.

Dashboard Migration

Administrators can migrate dashboard configurations between user accounts to: - Streamline onboarding of new users - Maintain consistent visualization standards - Transfer expert configurations to new team members

To migrate dashboards:

1.Log in with administrative credentials

2.Navigate to Settings > Users and groups > Users

3.Select the target user account

4.Choose Copy dashgroups to user from the available actions

1.Log in to the application with an administrative account.

2.Navigate to Settings by clicking the button on the left side of the interface, then select Users and groups > Users.

3.On the Users configuration page, select Copy dashgroups to user:

4.Click the button to open the copy dialog:

• Select source and destination users from the User where dashgroups are copied from and Users where to copy dashgroups dropdown lists.

• Choose desired dashgroups from the Dashgroups that are copied dropdown list and press "Save" to apply changes.

Log out from the administrative account and log in with the new user account. The Dashboards module will display the copied dashgroups.

Data Permissions

Data permissions work in conjunction with role-based access controls to provide granular data visibility management. These permissions are configured at the group level to: - Restrict data access by category - Implement need-to-know basis security - Enforce data governance policies

To configure data permissions:

1.Log in with administrative privileges

2.Go to Settings > Users and groups > Groups

3.Edit the target group

4.In the Data Permissions section, select appropriate data filters

5.Save changes to apply new permissions

To configure data permissions for an existing group:

1.Log in to the web interface with administrative rights.

2.Navigate to Settings by clicking the button on the left side of the interface, then select Users and groups > Groups.

3.In the Groups window, click the button for the target group. The Edit group window opens.

4.In the Data Permissions field, select or deselect appropriate data filters. Without any filters, users have unrestricted access to all available data.

Press "Save" to apply changes or "Cancel" to discard them. Alternatively, close the window without saving by clicking the mark in the top-right corner.