Defining Permissions Based on a Device Group

Define or edit permissions for users, groups, or roles based on specific device groups. This provides precise control over device actions and access. Options to copy permissions to users, groups, or roles is also available.

About this task

Assign permissions to a user, group, or role based on specific device groups. This gives you finer control over device actions and settings when role-based permissions do not provide enough flexibility. Use device group-based permissions to:
  • Grant or restrict access to features based on the user's assigned device group
  • Apply different permission levels across departments, teams, or regions
  • Create exceptions to role-based permissions without redefining entire roles
  • Improve security by limiting access to only relevant devices
  • Streamline management by reusing or copying permissions across device groups
Tip: The recommended approach is to define permissions at the role level, then assign users and groups to that role to ensure they inherit its permission settings. For details, see Best Practices.

Procedure

To define device group-specific permissions for a user management entity (user, group, or role):
  1. Select Users and Permissions from the main menu.
    Selecting Users and Permissions in the main menu.
  2. In the left pane, select the required tab (Roles, Groups, or Users).
  3. Select the required role, group, or user in the left pane to expand it.
    Selecting a local user account to view permission controls.
  4. Select Device Group Permissions under the role or group to display the list of permissions in the main pane.

    Selecting Device Group Permissions for the account

  5. In the Device Groups section, select the device groups that you want to define permissions for.
  6. In the Permissions section, define or edit the device group permissions as required. For details, see Device Group Permissions.
  7. Select Save to keep your changes, or select Cancel to discard them.
  8. Optional: To copy permissions defined for one device group to another device group:
    1. Right-click the source device group that you want to copy permissions from.
    2. Select Copy Permissions from the context menu to open the Copy Permissions dialog (see Copy Permissions).
    3. Use the dialog controls to select the target device group:
      Option Description
      Roles, Groups, and Users Select the Role, Group, or User to assign the copied permissions.
      Target Device Groups Select the device group that you want to apply the copied permissions.
    4. Select Apply to copy permissions to the target device groups, or Cancel to close the dialog box without copying the permissions.