Skip to end of metadata
Go to start of metadata

You are viewing an old version of this page. View the current version.

Compare with Current View Version History

« Previous Version 14 Next »

After you deploy AmpCon-DC, you can manage user access so that users are assigned with appropriate permissions.

Note: Only users with SuperAdmin permissions have access to the “User Management page”. Adding, editing, or deleting users, login restrictions, and TACACS+ configuration are only available to SuperAdmin users.

Role-Based Access Control

Role-Based Access Control (RBAC) is used to permit individual users to perform specific actions and get visibility to an access scope. Each user can be assigned to a specific role with associated permissions.

AmpCon-DC supports the following user roles. The permission levels are as follows: SuperAdmin > Admin > Operator > Readonly.

  • SuperAdmin

    • Provides access to all AmpCon-DC functions

    • The only role that can manage users and groups

  • Admin

    • Provides access to almost all AmpCon-DC functions

    • Can’t manage users and groups

    • Can’t access Switch model and System Config

  • Operator

    • Provides access to most of AmpCon-DC functions

    • Can’t manage users and groups

    • Can’t access Switch model and System Config

    • Can’t view and manage licenses and can’t view license logs

  • Readonly

    • Views limited pages such as Dashboard, Switch, Topology, Config Files View, and Alarms

    • Provides access to CLI Configuration, Template Verify, and Config Snapshot Diff

Adding a Global User or a Group User

When you add a user, you need to select a user role for the user and specify the user type (a group user or a global user). A group user means that the user is a member of a specific group. A global user means that the user is not limited to a group.

To add a user, follow these steps:

  1. In the AmpCon-DC UI, click System > User management.

  2. Click Add User, and input the following information:

    • User Name: The username.

    • User Password: The password of the user. The password needs to be a combination of uppercase letters, lowercase letters, numbers, and special symbols. The character count needs to be greater than 10.

    • Confirm Password: The password of the user.

    • User Role: Select “SuperAdmin“, “Admin“, “Operator“, or “Readonly“.

    • User Type: Select “Global“ or “Group“.

    • Email: The email of the user.

  3. If you select Group as the user type, select a group name from the Group Name drop-down list.

To assign the user to a new group that hasn’t been created, create a group as described in Adding or Deleting a Group.

图片-20241231-084953.png

  1. Click OK.

Deleting a User

To delete a user, follow these steps:

  1. In the AmpCon-DC UI, click System > User management.

  2. On the ”User Management” page, locate a user, and then click Delete.

图片-20241220-013246.png

Editing a User

To edit a user, follow these steps:

  1. In the AmpCon-DC UI, click System > User management.

  2. On the “User Management” page, locate a user, and then click Edit.

  3. Modify user information as you need.

图片-20241220-013324.png

  1. Click OK.

Setting Login Restrictions

To lock a user, follow these steps:

  1. In the AmpCon-DC UI, click System > User management.

  2. On the ”User Management” page, locate a user, and then click Lock.

  3. In the pop-up window, click Yes to confirm the lock operation.

图片-20241220-013921.png

User Permissions on Functions or Menu Pages

For functions or memu pages in the AmpCon-DC UI, different user roles have different permissions. For more information, see the User Permission Tables topic.

Configuring TACACS+ Authentication and Authorization

In addition to using local users (global users or group users), you can also enable the TACACS+ integration to manage user access. For more information, see the Configuring TACACS+ Authentication and Authorization topic.

  • No labels

Copyright © 2025 Pica8 Inc. All Rights Reserved.