You
can define further authorization levels in addition to the standard
levels in the above panel. The entries are transferred to the
User Management panel by clicking on OK.
The authorization levels are used throughout
WinCC OA. The
levels can be used, for example, in the panel topology, for system
authorizations, for data point configs and in the getUserPermission()
function.
In the panel
topology, the users who have, for example, the visualization
authorization can open panels the users without this authorization
cannot. In the same way, you can set other authorization levels.
The system authorizations allow defining different
authorization levels for different actions such as creating, changing
or deleting data point types. This means that only the users that
have the rights for the set authorization level can create, change
or delete data point types. See chapter system
authorizations for more information.
The authorization levels can be also be defined
for the data point configs. This means that you assign a level
to a config and only the users with the authorization for this
level can change this config.
If the authorization level 5 would, for example,
be set for the _alert_hdl config, only the users with the
authorization level 5 could change the _alert_hdl config. See
chapter _auth
(Authorization) for more information.
The control function getUserPermission()
allows checking the user rights. You can, for example, check if
a specific user has a specific authorization level and open a
panel only if the user has the required level. The control function
getUserPermissionForArea()
checks if the user has the authorization for a specific authorization
level of a specific area.
Caution
You can never change the functionality of the
5 predefined authorization levels or their authorization bits.
You can, however, change the text (description) of these levels. |