Access Control (RBAC) feature in XenMobile lets you assign predefined roles, or
sets of permissions, to users and groups. These permissions control the level
of access users have to system functions.
four default user roles to logically separate access to system functions:
- Administrator. Grants
full system access.
- Support. Grants access to
- User. Used by users who
can enroll devices and access the Self Help Portal.
You can also create
new user roles with permissions to access specific system functions beyond the
functions defined by these default roles by using the default roles as
templates that you customize.
Roles can be
assigned to local users (at the user level) or to Active Directory groups (all
users in that group have the same permissions). If a user belongs to several
Active Directory groups, all the permissions are merged together to define the
permissions for that user. For example, if ADGroupA users can locate manager
devices, and ADGroupB users can wipe employee devices, then a user who belongs
to both groups can locate and wipe devices of managers
Note: Local users may
have only one role assigned to them.
You can use the RBAC
feature in XenMobile to do the following:
- Create a new
- Add groups to a
- Associate local
users to roles.