In general, security for Dynamic Group Definitions flows through DA security and Asset Group security. The following table lists the types of users in a Platform configured for Delegated Administration and describes their access to Dynamic Group Definitions:
NOTE: DA visibility restrictions and privileges are NOT fully supported for Dynamic Groups. See Supported Objects for Delegated Administration for more information.
User |
Access |
Principal Axeda® Connected Product Management Applications Administrator |
Access to ALL Dynamic Group Definitions in the Platform. When creating Dynamic Group Definitions, access to all Asset Groups in the system. |
Non administrator with correct privileges |
In the Administration application, with appropriate privileges, this user can view, create, modify, and delete Dynamic Group Definitions. The list of Asset Groups available in the wizard (to select the Parent Asset Group) depends on asset group security (only the asset groups assigned to the user group of the logged in user are available). This user can see any Dynamic Group Definition for an Asset Group to which this user has access. |
1st level DA (DA1) 2nd level DA (DA11) Another DA user within same DA as DA1 |
Same as non-Admin user with appropriate privileges. As long as they have the appropriate privileges to the Administration application, to operations on Dynamic Group Definitions, and to Asset Groups selected for existing Dynamic Group Definitions, DA users can see any Dynamic Group Definition in the Platform. Users in the first and second level DA Units can see Dynamic Group Definitions created in child DA Units of their DA Unit as long as they have access to the related Asset Groups and the appropriate privileges. |