At Cloudi-Fi, we understand that every organization has unique needs when it comes to managing user access and permissions. To address this, we’ve implemented a Role-Based Management System that allows you to finely tune access control across your team. This system is designed to provide granular permissions based on various functional areas, ensuring that administrators can access only the resources and actions they need.
In this article, we'll explore how our role-based management system works, detailing the available permission categories and their corresponding actions.
Our Role-Based Management system provides several permission categories, each allowing administrators to either read or write (perform actions) in specific areas of the platform. This gives administrators the ability to assign administrators to roles that match their responsibilities without compromising security or access control.
Here’s a breakdown of the key functional areas:
Reporting / Analytics (View or Edit)
View : Administrators can view dashboard and reports but cannot make changes.
Edit: Administrators can create, modify, or delete reports and analytical data. They also have the ability to configure custom dashboards and export data.
Review All Authentication Events (View)
View : Administrators can access and review logs of authentication events (in Admin UI > Users > Authentications), which track login attempts and user access across the platform and all visitors web logs (in Admin UI > Users > Access logs).
Identities Management (View or Edit)
View: Administrators can view the visitors' identities (in Admin UI > Users > Accounts) and Profiles (in Admin UI > Users > Profiles).
Edit: Administrators can add, edit, or delete identities (in Admin UI > Users > Accounts) and Profiles (in Admin UI > Users > Profiles). Administrators can also access to Sponsor portal (in Admin UI > Users > Sponsor).
Locations Access (View or Edit)
View: Administrators can view data related to different locations in which the system is deployed.
Edit: Administrators can modify location settings, including adding or removing locations, and configuring access rules for each location.
Portals Administration (View or Edit)
View: Administrators can view the existing captive portal (in Admin UI > Portals > Templates).
Edit: Administrators can administer portal settings, updating terms and policies, and using Assignment features.
Campaigns Administration (View or Edit)
View: Administrators can view ongoing or past campaigns and access related data.
Edit: Administrators can create, update, or delete marketing campaigns that are deployed through the platform.
Administrator Management (View or Edit)
View: Administrators can view the list of administrators and their assigned roles.
Edit: Administrators can add, edit, or remove administrators, manage their access levels (in Admin UI > Administrators > Profiles), custom the password policies of administrators (in Admin UI > Administrators > Policies) and review Audit logs (in Admin UI > Administrators > Audit logs) .
Payment Options Management (View or Edit)
View: Administrators can view the payment options (when payment is activated in his captive portal user journey).
Edit: Administrators can update payment methods, manage billing cycles, and review past transactions.
Teams Administration (View or Edit)
View: Administrators can view the list of teams and their structure.
Edit: Administrators can assign administrators to teams
Global Settings (View or Edit)
View: Administrators can view global configuration settings for the platform (Company Account, Auth modes, Extensions).
Edit: Administrators can make changes to system-wide settings that impact the overall operation of the platform.
Devices Management (View or Edit)
View: Administrators can view information about the devices connected to the platform using Cloudi-Fi DHCP (Admin UI > Networks > Devices).
Edit: Administrators can add, remove, or update device settings.
Devices Activity Logs (View)
View: Administrators can access logs detailing the DHCP activities of devices connected to the system (Admin UI > Networks > Activity).
Security Profiles Management (View or Edit)
View: Administrators can view security profiles assigned to devices (Admin UI > Networks > Security profiles).
Edit: Administrators can create, edit, or delete security profiles that define access rules and security protocols.
Groups Sequencing Management (View or Edit)
View: Administrators can view the sequencing of groups (Admin UI > Networks > Group sequencing).
Edit: Administrators can manage how groups are sequenced or prioritized.
DHCP Management (View or Edit)
View: Administrators can view DHCP configuration, lease information and VPN IPSEC configuration (to connect to Cloudi-Fi DHCP).
Edit: Administrators can configure DHCP settings, manage leases, and and VPN IPSEC configuration.
Integrations Menu (Access)
Administrators can access the menu that provides integration with third-party services, allowing for extensions or API configurations.
Lobby Access (Access)
Administrators can access the lobby feature, which may include reception or guest management interfaces.
Data Protection (Access)
If enabled, all information related to visitors personal data (e.g. first name, email, etc) will be removed.
Event Management (Access)
Administrators can manage events.
Administrator Switch (Access)
Administrators can switch between different administrator without logging out.
Access to Cloudi-Fi Helpdesk (Access)
Administrators can access the helpdesk and support portal for technical assistance or to submit tickets for troubleshooting.