Back to Geneos FAQ

Authentication - How to allow setup editing while preventing authentication from being changed

If your organization requires certain users to be able to do all kind of configuration changes (gateway, samplers, rules, etc.) but a separate group of users will be managing authentication, you can easily segregate the roles and remove specific sections access such as Authentication. This can be achieved by using section permissions.

Example Copied

  1. Turn on the setting “Enable section permissions” at the top level of the Authentication section:

8050777707293 mceclip0

  1. Create a role with “sections” permission, allowing everything except the authentication section. This applies across all files that the user with this role is able to edit.

8050875313693 mceclip1

  1. Apply the role property to any user/user group you wish to remove authentication section access.

Geneos - Authentication - How to allow setup editing while preventing authentication from being changed This setting is different from ‘Restricted sections’ which is a top level item (rather than being under Authentication) and applies to all users on a per file basis - allowing include files to be limited to a particular purpose.

["Geneos"] ["FAQ"]

Was this topic helpful?