Add Users and User Groups
User management is accessible via the Users component of the Configuration section. By default, the system already features a built-in global Administrator account and built-in Administrators group.
Add Users
Click the + New user button on the upper panel to bring up the configuration dialog box.
Details
Enter user login information here.
The table below describes in detail the available settings.
User login name
Alphanumeric user name for login, no spaces allowed
empty
Active
Allow the user to log in via Macula Console and Macula Monitor: any users who have been disabled will not be able to use software
Enabled
User full name
User full name
empty, automatically filled from login name
Email address
User email address used for notifications
empty
Phone number
Phone number in international format (with country code) for 2FA
empty
Set/new password
Check to enter a password - this is obligatory when creating a new user
empty
Password never expires
User will not be prompted to change his password once in a while; enable this to ensure a permanent password for this user account (this setting can be overridden by the User must change password... setting in the same dialog box); otherwise, password will expire after the number of days specified in the server security policy
Disabled (not selected)
User must change password at next logon
User will be prompted to change his password upon his next logon attempt; enable this if you want to force user change the password even if his password is set to never expire
Disabled (not selected)
User cannot change password
Enable this to prevent the user from changing his password; this option is not available if user password is not permanent or if you have selected to force user change their password at next logon using the settings above
Disabled (not selected)
Organization
Choose an organization to which this user belongs
none
PTZ priority
Used for PTZ cameras and interactive CrossLink devices. 0 = lowest, 10 = highest
5
PTZ priority timeout
The amount of time for the PTZ controls to be locked after each user's action
10s
Override default limit of simultaneous connections
Maximum number of simultaneous connections allowed from this user account; the setting has priority over server-defined limitations; 0=unlimited
Disabled (not selected)
Set account activation time
If option is enabled and user is not Active - this will enable account at particular date and time.
Disabled (not selected)
Set account expiration time
If enabled, the user account will be automatically deactivated on the specified date at the specified time
Disabled (not selected)
*See below to learn more about how PTZ priorities work.
PTZ Priority will be used to for PTZ control of speed domes, and also for the control of interactive video channels (CrossLinks allowing users to control remote Web and Desktop applications). After each action (click), the control will be locked onto the user with the higher priority for the amount of time specified as PTZ Priority Timeout (10 seconds by default).
If two or more users try using PTZ control of a device at the same time, PTZ priority is used to decide who gains access first: user with a lower priority is blocked for ten seconds to allow a higher-priority user to use PTZ. If two users with the same PTZ priority have an access conflict, they will be both granted PTZ access simultaneously.
Default PTZ priority for all users, including those built-in and imported, is equal to five (medium priority). You can assign any user a higher PTZ priority (six to ten) or a lower one (four to zero) by editing individual user properties.
PTZ Priorities
PTZ priority is used to for:
manual control of PTZ cameras (speed domes),
automated PTZ control (tours and presets),
control of interactive video channels (CrossLink devices allowing users to control remote Web and Desktop applications).
PTZ related user actions include manual PTZ control (mouse clicks) and the calling of PTZ presets and tours. CrossLink control involves manual interaction (mouse clicks).
After each user action, the control is locked onto the user with a higher priority for the amount of time specified as PTZ priority timeout (10 seconds by default). PTZ priority is used to decide who gains access first: user with a lower priority is blocked for N seconds to allow a higher-priority user to use PTZ. If two users with the same PTZ priority have an access conflict, they will be both granted PTZ access simultaneously.
If two or more users try controlling the same device at the same time:
if both users have the same PTZ priority, the timeout will be ignored and each user's action will immediately take effect
if user A has a higher priority, his first action will take control from user B with a lower priority and lock the control for the specified timeout, preventing everyone with a priority lower than A's from controlling the device; once the time is out, any user can try gaining the control again
Thus, the PTZ priority timeout is only taken into account when taking over control, and does not matter when the users have equal priorities.
Default PTZ priority for all users, including those built-in and imported, is equal to 5 (five, medium priority). You can assign any user a higher PTZ priority (six to ten) or a lower one (four to zero) by editing individual user properties.
For PTZ preset actions in E&A, you will be asked to specify the PTZ priority when creating the action. For PTZ tour actions, the priority is always 0, allowing any user to interrupt the preset execution.
Membership
Choose which groups you want the selected user to be a member of. Every user can participate in one or multiple groups, depending on the system structure.
Manipulate the groups by double-clicking a group or using the Add/Remove buttons below. Use the Search field in the upper-right-hand corner to filter the groups available.
Resources
Each user can be granted permissions for server and channel/channel group administration. Select resources by adding at least one permission; remove them by clearing permissions using the Clear button below, or simply by double-clicking them in the Selected resources list.
Click OK when you have finished to return to Users; the newly created account will be added to the item list. Use the buttons on the upper panel to edit user details at any time, to quickly assign groups and remove specified users (hold CTRL of Shift to select multiple items at once).
If there are a large number of user accounts, the Search field in the upper-right-hand corner and the content filters in the bottom panel can help you quickly find the accounts you are looking for.
Add User Groups
When the number of users is large, it may be more convenient to create multiple user groups and then distribute resources between user groups, rather than between individual users. One user can be a member of several groups.
Click the down arrow near the + Create new user button and select New user group from the drop-down list to bring up the configuration dialog box.
In the Details tab, enter group name.
In the Members tab, choose which users and/or user groups will become members of the target group: manipulate items by double-clicking them or using the Add/Remove buttons below.
In the Membership tab, select the group(s) you want to include the current group as a member: manipulate items by double-clicking them or use Add/Remove buttons below.
Finally, you can grant resources permissions using the Resources tab in a similar way to adding a single user. Select resources by adding at least one permission; remove them by clearing the permissions using the Clear button below, or simply by double-clicking them in the Selected resources list.
Click OK when you have finished to return to Users; the newly created group will be added to the item list. Use the buttons on the upper panel to edit the group details at any time. If there are a large number of user accounts, the Search field in the upper-right-hand corner and the contents filters in the bottom panel can help you to quickly find the accounts you are looking for.
Time-based Access
Starting with version 1.26, you can limit user access options based on the schedules. To do so, go to:
Configuration -> Users -> your particular user
Inside the User pop-up window select Time-based access ->Change button
Pick up the existing Schedule from the list or create a new Schedule by pressing the +New Schedule button
confirm your choice with the OK/Apply buttons.
After that, user access will be limited by the applied Schedule.
If user belongs to multiple groups and user access is enabled at least in one group - user will have access!
Activate/deactivate User Accounts by Date and Time
It is possible to disable user accounts by setting up a date and time. To set timings, go to:
Configuration -> Users -> affected user -> Details
Scroll to the bottom of the section and mark the checkbox Set account expiration time.
By default, new users are created as active users, so if you want to set up account activation time, do the following:
Go to Configuration -> Users -> affected user -> Details and unmark the checkbox Active next to the User Login Name field.
Scroll down to the bottom, check the checkbox Set account activation Time, and set the date and time for a particular user account to be enabled.
By default, disabling the user account on the schedule does not disconnect the user automatically, and, while the session continues, the user will preserve all the provided access options.
To restrict user access instantly, you need to set up Server behavior. Go to Configuration -> Servers -> your server -> Security policy, scroll down to the bottom, and mark the Disconnect disabled users checkbox. That setting will ensure that any disabled user is disconnected from the server instantly no matter if the current session is still active.
Last updated