Utilities: Administration: Administrators: Permission Groups

The Enterprise feature set in ListManager 7.8b has a new permissions function, enabling administrators to allow or deny users access to individual pages of the ListManager interface. This is a URL based permission system. Note that permission groups do not apply to the discussion forum interface.

Note that this is an Enterprise level feature. To upgrade your license, please contact your Lyris sales representative at sales@lyris.com.

How Do Page Permissions Work?

Page permission groups enable administrators to create rules which either allow or deny users access to particular URLs within ListManager. If a page in ListManager contains a word or location which has been set to "deny" access, the user will not be able to access that particular URL. There are several default groups included, which can be edited; and new groups can be created to customize the accessibility you would like to give your users. These rules work like firewall rules; if no permission rule matches, the default is to accept the user and allow access. If users are denied, a message informing them that they do not have permission to access that particular page will be displayed.

There are several important notes about permission groups that you should have in mind when creating these or editing existing ones:

    The ListManager homepage and the login page are always accessible to all users, regardless of any rules created to deny access to these URLs. This allows a user to log in and log out as necessary, and not inadvertently be locked out of ListManager.

    This feature has no effect on email commands. To block all email commands by a user, ban their email address to the lyris@ address with a match phrase.

    The "admin" user (the login name "admin") is unaffected by any permission group setting. This is to prevent you from accidentally locking yourself out of your own server; admin will always have access to everything. All admins created or edited will, by default, have the same permission group applied to the current logged in user. Therefore, when an administrator with a particular set of access rules is logged in, any new administrators created at that time, will have the same rules apply by default.

    There may be cases in which a user name/password combination allows login to multiple lists. In this situation, if not all lists have a permission group defined, or if different page permissions are defined for each list, then ListManager will use the first page permission group it encounters for that name/password combination.

Finding Permission Groups

Ten permission groups are displayed at one time. To view more than ten groups at a time, click show more. Repeatedly clicking show more will show greater numbers of groups at a time.

You may change the sorting order of the permission groups by clicking the up or down triangles next to Group and Description. By clicking the top triangle, the sort order will be ascending (a-z); clicking the bottom arrow makes the sort order descending (z-a). Click next to see the next ten permission groups, previous to see the last ten.

ListManager includes several default permission groups:

    Approve Mailings (users are only allowed to approve mailings)

    Create Content (users are only allowed to create content)

    Create Mailings (users are allowed to create mailings, but cannot schedule or send them, or use utility functions)

    No Server Administration (users are blocked from the server administration pages)

    No Utilities (users are blocked from using the utilities section)

    No Web Interface Access (users are not allowed to use the web interface, and can only access the homepage, the login page, and the discussion forum interface. In addition they can use email commands, which are not affected by permissions groups.)

    Read Only Observer (users who cannot add, delete, or change any data)

    Reports Only (users are only allowed to view reports)

Viewing Or Editing An Existing Permission Group

To view the rules set for a particular permission group, click on the group name. This takes you to the Utilities: Administration: Administrators: Permission Groups: Permission Rules page, where all the rules for this group are displayed.

Renaming Permission Groups

Click "rename" next to the desired group to change the name of the group. This takes you to the Utilities: Administration: Administrators: Permission Groups: Rename Permission Group page. The description can be edited here as well.

Copying Permission Groups

Click "copy" next to the permission group you'd like to copy. ListManager will show you the old name, and will ask you for the new name. The default copy name is the original permission group name with "-copy" added to the end. The permission group created will have all of the settings and rules of the old group.

Deleting Permission Groups

Click "delete" next to the permission group you'd like to delete. All the rules for the group will also be displayed and deleted. ListManager will ask you if you're sure before deleting the group.

Creating a New Permission Group

Click on create new group. You will be taken to the Utilities: Administration: Administrators: Permission Groups: New Permission Group page.

Download as a File

Click on the disk icon to download your list of permission groups in CSV format.

More

1.   Utilities: Administration: Administrators

1.   Utilities: Administration: Administrators: List Administrators

2.   Utilities: Administration: Administrators: Site Administrators

3.   Utilities: Administration: Administrators: Server Administrators

4.   Utilities: Administration: Administrators: Permission Groups

1.   Utilities: Administration: Administrators: New Permission Group

2.   Utilities: Administration: Administrators: Rename Permission Group

3.   Utilities: Administration: Administrators: Permission Rules

4.   Utilities: Administration: Administrators: Add Permission Rule

5.   Utilities: Administration: Administrators: Edit Permission Rule