.gif)
Configuration is accessed by selecting File, then Options on the main menu. You must use the main "administration" module at least once before starting the "monitor" module. This allows the default configuration to be setup automatically.
The Enterprise Edition for Groups includes a number of extra configuration options not found in the Standard Edition (see the "Planning your configuration" discussion below).
This tab allows you to set the minimum levels that a user would have to have in order to edit users, edit passwords, print passwords, or copy passwords to the clipboard. We recommend that you set levels based around this general hierarchy:
10000 – Administrators
7000 – Managers
4000 – Average Users
1000 – Guests
View the reference section on configuration for complete details regarding configuration.
In addition to basic configuration, you may wish to customize the default list of categories. This may be done by selecting "Lists" from the main menu, then "Categories".
Planning Your Configuration
Although your configuration can be updated at any time, it is obviously best to start with the configuration that matches your needs, so the first step is to determine your needs. You may wish to work out your levels on paper before entering them.
- Who should have access to maintaining users?
o You’ll need to assign levels to these managers that are equal to or greater than the level beside "Edit Users" in configuration. Set the "Edit Users" level accordingly.
o No matter what "Edit Users" level is entered, users will never have access to the accounts belonging to users with a level higher than their own, and the target user’s password is required to perform editing.
o The administrator has access to all user records.
- Who should be able to edit the passwords rather than just viewing passwords?
o You’ll need to assign levels to these users that are equal to or greater than the level beside "Edit Passwords" in configuration. Set the "Edit Passwords" level accordingly.
- Who should be able to print passwords?
o You’ll need to assign levels to these users that are equal to or greater than the level beside "Print Passwords" in configuration. Set the "Print Passwords" level to 10000 to completely disallow printing, or 0 to always allow printing.
- Is there more than one department or group in the organization or a need to limit access to groups of passwords that cannot be achieved using levels alone?
o If yes, check the "limit access to passwords by category (group)" box.
o If no, uncheck the "limit access to passwords by category (group)" box.
o If users will need to store personal information, we recommend that you check the "limit access to passwords by category (group)" box and give each user their own category named after them. The option to "Allow private passwords where levels are equal" is a weaker alternative, because anyone with a higher access level would have access to a user’s private passwords. A user-specific category means that only the administrator has access to those passwords.
o When access to passwords is limited by category, users can be assigned categories directly, or indirectly through the use of User Groups.