Multi-User Access

Follow

TR

• May 03, 2022 17:25

Requesting account management tools to establish users and roles for different stakeholders in our organization. Admin accounts and view only accounts. This may satisfy my previous request for a seperate customer facing dashboard.

6

• 

  Firewalla

  • May 03, 2022 17:46

  Ack, let me put this in with our developers. So you pretty much want two levels of access, one is super, and the other is view only. Will you want even more fine-grain controls? 

  0

  Comment actions Permalink
• 

  TR

  • May 03, 2022 17:51

  Ideally I could see all boxes for all my customers as SU but I could also restrict the customer's dashboard or user account to only the boxes they own.

  All of these requests are landing somewhere between the customer facing dashboard I described in another post and account access controls. There may be a hybrid solution between the two.

  0

  Comment actions Permalink
• 

  LoRdNeX

  • May 09, 2022 08:56

  I would say at least a 3 tier setup. Manager, admin, user or something the similar. That way you can always have someone at the top to override a disgruntled employee or something

  0

  Comment actions Permalink
• 

  TR

  • May 13, 2022 04:46

  Adding to this, I have come across use cases where I want to turn off visibility of flow data for specific users.  Management and system monitoring tools only, no flow monitoring.

  0

  Comment actions Permalink
• 

  Firewalla

  • May 13, 2022 05:12

  @TR, is the knob to be turned off done on the user side? (they don't want to see) or it is your side, you don't want to see?

  0

  Comment actions Permalink
• 

  TR

  • May 13, 2022 05:27

  My side, I don’t want employees to see when they are monitoring the networks in shifts. I’d like to be able to give each employee a unique login and remove flows for certain user roles. Then I can tell our customers we only look at flows when alerted by troubleshooting tickets, alarms, or suspicious activity.

  I’ve noticed users will turn off monitoring on their devices in order to avoid oversight. Not good security practice.

  0

  Comment actions Permalink
• 

  Firewalla

  • May 13, 2022 18:12

  Thank you TR, make sense. Will see if we can do 

  0

  Comment actions Permalink
• 

  Dustin Wynn

  • June 24, 2022 12:22

  Here is my suggestion:

  Global Admin

  Device Admin or Site Admin (per Firewalla)

  Global Read Only

  Device Read Only

  Custom Roles

  3

  Comment actions Permalink
• 

  Joshua Hendrickson

  • May 06, 2025 01:00

  It's obviously been a productive couple years in many regards for the MSP developers. Where are we at in the development and implementation of customizable user specific permissions as outlined and discussed in this thread?

  2

  Comment actions Permalink
• 

  Bradley Bunch

  • June 15, 2025 17:08

  What is the status on this? I have a wife and three kids and we have 30+ wired and wireless devices on our home network, and I work from home. I would like to be able to have myself and my wife as admins, and maybe my kids as read-only users with access to JUST their devices (iPhone, iPad, desktop PCs, Steamdecks, etc..) ??

  0

  Comment actions Permalink
• 

  Firewalla

  • June 15, 2025 20:17

  Since there is no concept of an admin in the app, it will be very difficult to implement a feature and also prevent anyone from getting locked out. If you are using the MSP, it may be possible since the MSP itself can fully control access and authenticate you using something beyond the phone. We have not yet decided to implement this in MSP either.

  0

  Comment actions Permalink

Please sign in to leave a comment.