Configuring Ownership and Viewer Access
You can control access to various Oracle Communications Unified Assurance entities by configuring ownership and viewer access.
Configuring User and Group Ownership
You can configure ownership for dashboards, events (filter groups, filters, and displays), files, links, queries, reports, and SLM services. You can set the following ownership options on an entity's configuration interface:
-
Public: All users and groups can access the entity.
-
User owner: Only the selected user has access to the entity. This grants private access only for this user (and any administrator users with SUPER permission).
-
Group owner: All users of the selected group have access to the entity.
You assign either a user owner or a group owner for an entity, not both. When you select a user owner, the option for group owner disappears.
Note:
Users with SUPER permission have full access to everything, regardless of ownership settings.
The following table summarizes the possible combinations between user and group ownership settings.
| User Ownership | Group Ownership | Access Granted |
|---|---|---|
| User | N/A | Private read and write access to the specified user. |
| Public to All Users | User group | Read and write access to all users in the user group. |
| Public to All Users | Public to All Groups | Read and write access to all users in the system. |
Configuring Viewers
The configuration interface for most entities also includes the Viewers section to provide read-only access control beyond the user and group ownership settings. When you set a user group owner, users in that group have read-write access. You can grant read-only access to additional user groups by adding them to the entity's viewers list. You can also grant read-only access to all users by adding [Public to All Groups] to the viewers list.
If an entity has a user owner, adding viewers has no effect. The user owner is still the only user who can access the entity.
Note:
When a user with Viewer permission accesses an entity that belongs to another user or user group, the value for the User or Group Owner field is displayed as [HIDDEN].
About Owners, Viewers, and Restrictive IDs
You can also control access using restrictive IDs in user groups. Any restrictive IDs set in a user group take precedence over viewer and ownership settings. For example:
-
UserA is in the Zone3 user group, which is listed under Viewers for dashboard 123 in dashboard group A. However, the restrictiveDashboardGroupID property for the Zone3 user group is set to dashboard group B.
-
UserB is also in the Zone3 user group. UserB is set as the owner of a dashboard123.
In both cases, the restrictive ID applies and neither user has access to dashboard123. See User Group Properties for more information about restrictive IDs.