Account security roles

Administrator

Accounts with the 'Administrator' access role have full access to Unimus and all features within.

In other words, 'Administrator' users are not limited in any way.

Operator

Accounts with the 'Operator' role have full read/write access to Unimus, except:

• Operators have no access to the 'User management' screen

• Operators can not delete "Device Tags" (as this can affect access policies)

• Operator can not see or manage “Ownership” of objects

• Operator is not able to see tab “Accounts with access” in Device tags window in Devices screen 

• Access to 'License settings' is read-only (can see, but can't change license key)
• Access to 'Sensitive data stripping' is read-only

We recommend that most users have 'Operator' set as their access role.

Access for operator accounts can be further restricted using 'Device access tags'.
Please see this wiki article for more information: Object Access Policies.

Read-only

'Read-only' role accounts have read-only access to Unimus - they can not configure or change any settings.

Additionally, read-only accounts have these limitations:

• Read-only accounts have no access to the 'User management' screen
• Read-only accounts have no access to the 'License settings' menu

• Read-only account do not have access to "Show Password" and "Show All Passwords" in the 'Credentials' screen

• Read-only can not see or manage “Ownership” of objects

• Read-only is not able to see tab “Accounts with access” in Device tags window in Devices screen 

Access for read-only accounts can be further restricted using 'Device access tags'.
Please see this wiki article for more information: Object Access Policies.

None

Accounts with the 'None' role have no access to the application - they can not even log in.

This role is meant to deny access to Unimus for a particular account, without the need to delete that account.

System access table

* - see details for additional limitations