next up previous contents
Next: Users Up: Creating, Deleting, and Changing Previous: Group Authority   Contents

Role Membership Authority

Sometimes an administrator may want to delegate the creation and management of user accounts to other users. For example, the administrator might allow a specific person in the marketing department to create and manage user accounts that can read and post to the marketing group's newsgroups. The Role Membership Authority property in combination with the Admin Level property can be used to control this process.

Suppose, for example, that the marketing department's newsgroups all have names that start with ``marketing.'' and that the administrator wants to create a user account that can create other users who can read and post to these newsgroups but cannot create users who can read or post to other newsgroups. Also this special user should be able to create and manage newsgroups whose names begin with ``marketing.''.

The administrator would first create a new role named MarketingAdmin and set that role's properties as follows:

  • Set the RoleName to MarketingAdmin
  • Set the Admin Level to Administer users only
  • Set the Name field in Group Authority to marketing.* and the corresponding Access Level to Read, post, cancel, modify.
  • Type the name MarketingReader into the first field in the Role Membership Authority.

Next the administrator would create a new role named MarketingReader and set that role's properties as follows:

  • Set the Role Name to MarketingReader
  • Set the Admin Level to No administrative authority
  • Set the Name field in Group Authority to marketing.* and the corresponding Access Level to Read, post, cancel.

Finally the administrator would create a new user named MarketingAdmin and set that user's properties as follows:

  • Set the User Name to MarketingAdmin
  • Set the Password to something secret
  • Set the Email Address as desired
  • Select both the MarketingAdmin and MarketingReader roles in the Roles list.

Now the MarketingAdmin user is able to:

  1. Create and modify users whose only assigned role is MarketingReader
  2. Create and modify newsgroups whose names start with ``marketing.''


next up previous contents
Next: Users Up: Creating, Deleting, and Changing Previous: Group Authority   Contents
Copyright © 2000 by Burton Computer Corporation, All Rights Reserved