Role-Based Administrator Access Control

Role-Based Access Control (RBAC) is a way to assign different levels of administrator functionality to different users. You can assign roles to various users that exist on a configured LDAP or RADIUS server. The first step in integrating with your existing LDAP or RADIUS service is to give WebApp Secure the connection information. In the Web UI, navigate to Configuration > Users and Groups and click on Manage Authentication Settings. On the resulting page, input all information relating to your LDAP or RADIUS server and click Save. You should now see the corresponding service as "Enabled" under the Authentication section of Users and Groups. Once the server has been connected to WebApp Secure, the next step is to configure roles for various users. By default, the user "mykonos" is enabled and given the role "Super Administrator". To add additional users, click the Add User link. You will be prompted to enter a Username and will be given a choice of which groups you want that user to inherit. A complete description of all roles is available by clicking on View Role Descriptions beneath the Roles dropdown. A more simplistic table of roles and their corresponding permissions are given in Appendix D, RBAC Groups and Roles.

Related Documentation