Security in Warewolf is Windows-based.
To access Server permissions inside Warewolf:
- Click the Settings icon
- Select Security from the sub menu on the left of the Settings Tab that opens.
There are three important concepts to remember with permissions and how they are allocated by Warewolf:
- Resource Permissions over-ride Server Permissions
- Permissions are cumulative in nature
- Anyone accessing the server can get Public permissions if set in the URL
Giving Windows Group A on the server specific permission, will apply to every resource, except if a Resource is specifically allocated different permissions for Group A below in the Resources Permissions area. Server Permissions are therefore a default mechanism to allocate global access to Warewolf and Resource permissions allow fine-grained control of system usage and access.
As a member of “Data Capture” and “Data Retriever” groups, a user would have all the permissions of “Data Capture” PLUS all the permissions of “Data Retriever”. So if “Data Retriever could only execute Service A and “Data Capture” could only view Service A, then the user, as a member of both groups, would be able to View and Execute Service A.
By default accessing a server will give every user the permissions of the “Public” group. The “Public” group is a Warewolf defined group and applies to everyone accessing the system. This makes it easy to turn security features on or off. By giving “Public” Administrator access to your server, regardless of who logs onto your server, they will have Administrator access.
The account installing Warewolf is automatically added to the “Warewolf Administrators” group created by the installer.