SpectX Base implements three roles with regards to user rights: Administrator, UserAdmin and User.
The Administrator role is assigned by Administrator setting in the user properties dialog in the “Admin - Users and Groups” view. Administrator has rights to:
- Supervise managed datastores.
- Manage Users and Groups.
- Access System status management view.
- Manages Access Control to SpectX resources.
UserAdmin role is granted by assigning a user to group defined by userAdminGroup configuration setting. UserAdmin has rights to:
- Manage Users and Groups, except for Administrator users.
The user role does not have rights to any of the above.
In larger organizations, the roles of managing source data (collection/storage) and writing analytics queries may be separated. In the case when analysts should not have direct access to data then they should be assigned User roles and respective datastores should be placed into the System folder.
When you want to isolate the roles of data structure definition and analytics then defined patterns should be placed into the System folder. Use the views to accomplish both data access and structure isolation.
Further customization of access rights can be done using access control lists.
Managing Users and Groups¶
These settings can be accessed in the UI by clicking the
Admin - Users and Groups.
Deleting a user account does not remove any logs associated with the users’ activity or the user-created files in the Resource Tree.
Removing a user does not enforce closing active sessions. After removing a user, administrators can confirm
that a user is not still remotely logged into SpectX by clicking
System Status >
Loggedin Users in the Data Store Pane.
User Account Properties¶
Username: - SpectX login username.
Full Name- Username shown to other SpectX users in groups.
Timezone- Timezone for displaying TIMESTAMP and TIMESTAMP_NANO fields. If not explicitly set then operating system timezone is used.
New Password- For changing user password.
Re-enter Password- For changing user password.
API Access Key- API access key for Authentication.
Groups- The groups that the user is assigned to.
Editor Keymap- Enables the configuration of hotkey shortcuts.
Groups are used to assign access control permissions for users. Access control lists accept groups defined locally in SpectX or obtained from external identity management systems (such as Integrated Windows Authentication or SAML SSO).
Admin - Users and Groups/Groups administrator role can define local groups.