Introduction

Administration, control, and access of various entities in a Portal play a key role in application management with respect to an organization. The level of granularity with which the functions, settings, rules, and procedures can be defined eases the process of streamlining how an organization uses the system. This can only be achieved by varying role definitions of each user to equip them with different levels of authoritative and contributive options within the Portal.


Concept

User Roles determine the access level and permissions of a person authorized to use VIDIZMO. In a default VIDIZMO installation, there are certain predefined roles assigned to users with a default set of permissions. We will be looking at these roles and their permissions in more depth below:

 

Roles and Permissions

In VIDIZMO Digital Evidence Management System, roles define the permissions which control access to various features within the Digital Evidence Management system. Each portal user is assigned a certain role based on their required access control. Below is a list of pre-configured roles along with their set of permissions



Note: VIDIZMO also allows its valuable customers to customize these roles with designed set of permissions. Please contact VIDIZMO Support Team for more information.


Permission Reference

The following table provides the default permissions for the pre-configured roles in VIDIZMO DEM. This table has been populated with an assumption that your Portal's Security policy for Media Access has been set to All Account and Portal Viewers. This entails that the all registered users have the right to view media uploaded in the Portal. 


Note: The permissions discussed in the table below, are applicable if the portal's Security Policy is set to Decide when Publishing. This means that access permissions on every media shall be the sole determinant of who can view this media. Also, there are certain media-related permissions such as Sharing, Downloading and Commenting that when enabled on a Group, will only be applicable on a media file if the same permissions are enabled on that media's publish settings.


 

 

PermissionsSystem AdministratorManagerModeratorContributorViewer Anonymous 
Login Access 
Login to the Portal Allowed Allowed Allowed Allowed Allowed Not Allowed 
Search Access 
User Search Allowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Group SearchAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Evidence Search Not AllowedAllowed Allowed Allowed Allowed If AccessAllowed If Access 
Case Search Not AllowedAllowed Allowed Allowed Allowed If AccessAllowed If Access 
Metadata Search (Evidence/Case) Not AllowedAllowed Allowed Allowed Allowed If AccessAllowed If Access 
Search within Closed Captions Not AllowedAllowed Allowed Allowed Allowed If AccessAllowed If Access 
Search using Face Not AllowedAllowed Allowed Allowed Allowed If AccessAllowed If Access 
Case Management 
Creating a Case Not AllowedAllowed Allowed Configurable Not Allowed Not Allowed 
Adding existing Evidence to a Case Not AllowedAllowed Allowed Configurable Not Allowed Not Allowed 
Uploading Evidence files within a Case Not AllowedAllowed Allowed Allowed Not Allowed Not Allowed 
Modifying Case Settings Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Modifying Case Custom AttributesNot AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Deleting Case Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Adding Case to Quick Access section Not AllowedAllowed Allowed Allowed Allowed If Access Not Allowed 
Sharing Case (If Case Sharing Enabled) Not AllowedAllowed Allowed Allowed Allowed If accessAllowed If Access 
Grant Access Rights (via Limited Share) Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Viewing Chain of Custody of a Case Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Downloading Chain of Custody of a Case Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Unpublishing Case Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Copying link of CaseNot AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Flagging a CaseNot AllowedAllowed Allowed Configurable Not AllowedNot Allowed 
Moving Case from one Folder to another Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Case Inspection
Inspecting Case Not AllowedAllowed Allowed Allowed Allowed If accessAllowed If Access 
Evidence Management 
Uploading Evidence Not AllowedAllowed Allowed Allowed Not Allowed Not Allowed 
Modifying Evidence Basic Details (Title, tags, closed captions file) Not AllowedAllowed Allowed Allowed (Only on Self - Uploaded)Not Allowed Not Allowed 
Modifying Evidence Access Rights Policy Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Modifying Evidence Publishing Rules Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Modifying Evidence Custom Attributes Not AllowedAllowed Allowed Configurable Not Allowed Not Allowed 
Grant Access Rights (via Limited Share) Not AllowedAllowed Allowed Configurable Not Allowed Not Allowed
Deleting Evidence Not AllowedAllowed Allowed Configurable Not Allowed Not Allowed 
Moderating Evidence Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Evidence Tamper Detection (If App Enabled) Not AllowedAllowed Allowed Only on Self-Uploaded Not Allowed Not Allowed 
Viewing Evidence Chain of Custody Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Downloading Evidence Chain of Custody Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Evidence Downloading (if Allow Downloading is checked in Publish Settings) Not AllowedAllowed Allowed Configurable Configurable Configurable 
Evidence Sharing (if Allow Sharing is checked in Publish Settings) Not AllowedAllowed Allowed Configurable Configurable Configurable 
Unpublishing an Evidence Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Moving Evidence to other Folder Not AllowedAllowed Allowed Not Allowed Not Allowed Not Allowed 
Add Evidence to Quick Access section Not AllowedAllowed Allowed Allowed Not Allowed Not Allowed 
Add Notes  (if Allow Notes is checked in Publish Settings) Not AllowedAllowed Allowed Configurable Not AllowedNot Allowed
Evidence Re-upload Not AllowedAllowed Allowed Only on Self-Uploaded Not Allowed Not Allowed 
Adding Annotations Not AllowedAllowed Allowed Configurable Configurable Not Allowed 
Viewing Annotations Not AllowedAllowed Allowed Configurable Configurable Allowed If Access 
Evidence can be Assigned to Not AllowedAllowed Allowed Allowed Allowed Allowed only if External Sharing has been enabled in Portal
Evidence RedactionNot AllowedAllowed Allowed Configurable Configurable Not Allowed
Evidence MosaicNot AllowedAllowed Allowed Configurable Configurable Not Allowed
Evidence Inspection 
Inspecting Evidence (Can be Controlled with Access Settings) Not AllowedAllowed Allowed Allowed Allowed If AccessAllowed (If Evidence Access Granted) 
User & Groups Management
View and Edit Account Information Allowed Allowed Only their ownOnly their ownNot AllowedNot Allowed
Invite UsersAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Edit User ProfileAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Edit User RoleExcept their ownExcept their ownNot Allowed Not Allowed Not Allowed Not Allowed 
Delete UserAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Disable UserAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Reset User PasswordAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Create Group of Users Allowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Add/Remove Users in a Group Allowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Add/Remove Groups in a GroupAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Edit Group PermissionsAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Delete GroupAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Create permissions for Groups Allowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Admin Access 
Configure Security SettingsAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Edit Portal Settings Allowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Users and Groups Administration Allowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Configuring Storage ProvidersAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Configuring Encoding ProviderAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Setup WizardAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Configure E-mail Templates and SMTP Protocols Allowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Configure LocationsAllowed Allowed Not Allowed Not Allowed Not Allowed Not Allowed 
Log Access Level
AllowedAllowedNot AllowedNot Allowed
Not Allowed
Not Allowed
View and Export Audit LogAllowedAllowedNot AllowedNot AllowedNot AllowedNot Allowed



Note: In the table above, configurable permissions can be controlled using Group Permissions. To learn more about it, see: Understanding User Groups to Manage Access Rights and Permissions.