Skip to main content

User Management

Managing users and permissions in NopeSight.

User Roles

Administrator

  • Full system access
  • User management
  • System configuration
  • All department access

Department Admin

  • Department-specific admin
  • Manage department users
  • Configure department settings
  • View department data

Operator

  • Read/write access
  • Create and modify CIs
  • Run reports
  • Manage events

Viewer

  • Read-only access
  • View CIs and relationships
  • View reports
  • View dashboards

Creating Users

Via Web Interface

  1. Navigate to Admin → Users
  2. Click "Add New User"
  3. Fill in user details:
    • Username
    • Email
    • Password
    • Department
    • Role
  4. Click "Create User"

Via API

POST /api/users
{
  "username": "john.doe",
  "email": "john@example.com",
  "password": "secure-password",
  "department": "IT",
  "role": "operator"
}

Managing Permissions

Department-Based Access

  • Users see only their department's data
  • Cross-department access requires admin role
  • Department isolation is automatic

Custom Permissions

  • API access control
  • Feature-specific permissions
  • Report access
  • Discovery management

Authentication

Login Methods

  • Username/password
  • API tokens
  • SSO integration (optional)
  • Multi-factor authentication

Session Management

  • JWT token expiration: 24 hours
  • Refresh token support
  • Session timeout: 30 minutes
  • Concurrent session limits

User Settings

Profile Management

  • Change password
  • Update email
  • Set preferences
  • Manage API tokens

Notifications

  • Email preferences
  • Alert subscriptions
  • Report schedules
  • Event notifications

Security Best Practices

Password Policy

  • Minimum 8 characters
  • Complexity requirements
  • Password history
  • Expiration policy

Account Security

  • Failed login attempts
  • Account lockout
  • Password reset process
  • Audit logging

API Token Management

Creating Tokens

  1. Navigate to Profile → API Tokens
  2. Click "Generate New Token"
  3. Set token name and expiration
  4. Copy token (shown only once)

Using Tokens

# Include in header
Authorization: Bearer your-api-token

# Example request
curl -H "Authorization: Bearer your-api-token" \
  http://localhost:5000/api/cmdb/ci

Auditing

User Activity

  • Login history
  • Action logs
  • API usage
  • Permission changes

Compliance

  • Access reviews
  • Permission audits
  • Activity reports
  • Security compliance