About group access rights

Group access rights enable WhatsUp Gold users to see or make changes to specific groups and devices. These rights can be enabled or disabled by the administrator and are disabled by default.

Group access rights are useful when users need to view and edit only those groups that matter to them, as would be the case with a large network with multiple network administrators. Group access rights allow an administrator to grant each user rights to only the devices on the network for which that user is responsible.

Types of group access rights

There are four types of group access rights:

1. Group Read. This right allows users to view items within the selected group and pertaining to that group, including the group's reports, map, and device list.
2. Group Write. This right allows users to edit group properties and add, edit, and delete devices and subgroups within the selected group.
3. Device Read. This right allows users to view the device properties and device reports of all devices within the selected group.
4. Device Write. This right allows users to edit the device properties of any device within the selected group and to delete the device from the group.

Note: To add a device to a group, a user must have Group Write rights to the group. Device Write rights allow users to modify and delete existing rights, but do not allow them to add new devices to the group.

Tip: When enabled, group access rights are applied throughout WhatsUp Gold. Device and group pickers, reports, and group views all respect what a user account is granted permission to view and edit.

The following is a list of operations and the group access rights that must be assigned for the user to perform that task:

• List, Map, and Group reports in the Group Views menu require Group Read access.
• Create Group and Group Properties in the Group Operations menu require Group Read and Group Write access.
• Copy Group requires Group Read in the source group, and Group Read and Group Write in the destination group. (Permissions to groups and sub-groups are copied, not inherited from the new parent).
• Move Group requires Group Read and Group Write in both the source and the destination groups. (Permissions of the group and sub-groups remain the same.)
• Delete Group requires Group Read, Group Write, Device Read, and Device Write recursively. (Device Read Write may not be required if the group is empty).
• Create Device requires Group Read, Group Write, Device Read, and Device Write. If the device already exists in other group(s), you must also have Group Read, Group Write, Device Read, and Device Write in one or more of those groups.
• Copy Device requires Group Read in the source group and Group Read and Group Write in the destination group. The level of device permissions must be the same in both groups. Downgrade from Device Read and Device Write to Device Read is also permitted.
• Move Device requires Group Read and Group Write in both the source and the destination groups. The level of device permissions must be the same in both groups. Downgrade from Device Read and Device Write to Device Read is also permitted.
• Viewing Device Properties and Device Reports requires Device Read.

Modifying Device Properties, Bulk Field Change, and Acknowledgement require Device Read and Device Write.