top of page
This site was designed with the
.com
website builder. Create your website today.Start Now
Search
  • Writer's pictureMaarten Boonen
    • Aug 28, 2014
    • 2 min read

How to setup Role Based Access Control for DocAve 6


What if you want to do User Management for your Administrators and Power Users only from Active Directory?

Also for DocAve 6 this is possible and in this post I'll explain how.

Configure Role Based Access Control

  • Connect Active Directory to DocAve

  • Create in Active Directory logical security groups

  • Create DocAve permission levels

  • Create in DocAve some security groups with a logical name

  • Connect the permission levels to groups and add the AD security groups

  • Test access

Most people who ever used DocAve know the default password is admin / admin. It's a good thing to connect DocAve to your Active Directory, do your user management from there and remove the default account.

In this post I'll describe how to configure it.

RBAC_01.jpg

Connect Active Directory to DocAve

Open Control Panel >> Authentication Manager and click AD Integration (button).

RBAC_02.jpg

Fill in the domain and a vallid domain account. The DocAve Service Account will be perfect for this. Use DOMAIN\account and choose validation test.

RBAC_03.jpg

Return to the Authentication Manager and click Set as default. You can still switch between Local System and now Ad but the Local System we will disable after the test or atleast reset the password.

RBAC_04.jpg

Create in Active Directory logical security groups

Go to your domain controller and open the User Manager tool. Create some Security Groups with a logical naming convention that will reconize the module name for the permission level.

RBAC_05.jpg

Create DocAve permission levels

Open Control Panel >> Authentication Manager and choose system permission.

RBAC_06.jpg

Basicly the difference between System and Tenant is that System has more options to connect and permissions. It's recommended to make a permission level for every module. If you want to let power users to join in use a prefix infront to keep them together.

like, sys_administration, sys_data_protection and ten_data_protection.

System Permission

RBAC_07.jpg

Tenant Permission

RBAC_08.jpg

RBAC_09.jpg

Create in DocAve some security groups with a logical name

Now open the Control Panel >> Authentication Manager again

Connect the permission levels to groups and add the AD security groups

Test access

Now if you close DocAve and restart it the login screen should say Active Directory at Log on to. If you add your own account to one of the Active Directory Security Groups you should have no problem accessing DocAve 6.


92 views
bottom of page