Granting Permissions for Access to Server Objects

For access to objects of the CODESYS Automation Server, permissions can be granted so that specific users, user groups, or roles are granted or denied access to individual objects. Assignment is done directly at the respective object. The permissions are granted in a dialog on the CODESYS Automation Server for the respective object and are also displayed there. In this dialog, you can also assign an alternative role in addition to the access permission. The permissions of the role selected here are thereby additionally granted. Moreover, the permission can be granted to a user, group, or role in order for themselves to grant permissions to the object. The option for this authorization is disabled by default.

Permissions can be granted for the following objects:

Projects in the Applications → CODESYS Projects view
PLCs in the view PLCs → List View
Gateways in the view PLCs → Gateways
Topology view in the view PLCs → Topology Views
Templates in the view Template → Applications
Data Analyzer Projects

An administrator can always modify the permissions for objects. By default, the creator and all higher roles have access to the object and can also edit the permissions. By default, the other users do not have access to the object and also cannot grant permissions. When assigning roles, a user cannot assign roles higher than his own role.

Procedure. Granting permissions for access to a project

. Requirements

You are signed in to the CODESYS Automation Server.
The CODESYS Automation Server project has been transferred to the server.

In the menu bar, click Applications → CODESYS Projects.
Click the button for the desired project.
The '<project name>' Permissions dialog opens.
In the dialog, all users, groups, and roles which have access to the project are displayed, as well as their access permissions.
If the user, group, or role for which you want to grant access is not displayed, then type the name into the search field and click Add.
The user, group, or role is displayed in the list.
If you want to grant an additional role to the user, group, or role which was just added, then click the symbol in the Additional Role field of the corresponding row, and select the desired role. Then the permissions of this role are granted in addition to the current permissions.
In order to grant the permission to a user, group, or role to grant access to the object also for others, select the option in the Can Permit column.
Click Save to save all of your performed changes on the server.

For more information, see: <object> Permissions

Note

Video "CODESYS Automation Server – Permissions Management"