You can manage and organize the security privileges of users as part of Groups.
The administrator establishes group security privileges and then assigns users to groups. Can create, rename, and delete groups, as well as modify group membership.
A group may contain users or other groups. Both a user and a group may be in multiple groups. (Not allowed: Group A is part of Group B, which is part of Group A.)
By default, there are two User Groups: Administrators and Symphony Users.
The Administrators user group allows users who are a member of this group full access to the system.
The Symphony Users group allows users limited access.
If a security restriction is applied to a group, this restriction is implicitly applied to all members of that group. If users are added to the group at a later date, the same security restrictions automatically apply. If users are removed, the security restrictions no longer apply.
Enterprise Management: If your system is under Enterprise Management, the Site and User membership security settings are read-only if they have been configured at the enterprise management level. You cannot add/remove users or groups. You can, however, modify access to Devices and Video walls.
Log into the Server. Select Security > Groups. Groups are listed by name along with a description.
Log into the server. Select Security>Groups.
Click Add. Enter a name and description for the group.
In the Group Parents field, add the group name of the group you want to use as the parent group.
Click Save. The group is now displayed in the list.
Select the newly created group from the list and click Edit. The Permissions options are displayed.
From the Security Profile list, select a profile.
In the Permissions section, select the Allow, Deny, or Unspecified option for each access right.
Site defines access rights for core functionality that is not specific to a camera or other resource; for example, whether a user can connect to the farm, or export video.
All Devices defines group permissions that can be defined for device; for example, whether a member of a group can view the live feed or change the configuration for a specified camera, or listen to a camera or talk through a camera
Video Walls defines group permissions that can be defined for video walls; for example, whether a member of a group can move a window in the video wall, or edit a video wall layout.
All Users defines group permissions that can be defined for other users; for example, whether a member of a group can view or edit the properties of another user or group.
The Effective Permission column calculates the access granted this group for the current functionality. Symphony checks if this group is a member of another group that may restrict access to the resource. For example if the current group allows access but another group of which it is a member restricts access, the effective permission will be Deny.
You can click on the effective permission entry for a given right to display a list of inherited permissions. An Effective Permission Breakdown popup box appears. This helps you determine which group membership is causing the current effective permission.
Click Save.
You can edit the same group again and select a different Security Profile for that group. You select a different profile, assign different permissions and then click Save to save that profile/group/permission set.
Ensure that you have created a group first before attempting to connect it with an existing group.
Log into the server. Select Security > Groups.
From the list of groups, elect the group you want to make part of another group and click Edit.
In the Group Parents field, add the group name of the group you want to use as the parent group.
Click Save.