Since multiple departments share one system, you (the super admin) need to set sub-admins for each department for them to assign specific permission to their department employees.
Sub-admins should only be able to manage permission assignment within their scope of responsibilities, as shown in the following figure.
Log in to FineDataLink as the super admin and choose System Management > Permission Management. You can manage all permission of this system on this page, as shown in the following figure.
The permission holder refers to the object that is assigned permission, including departments, roles, and users.
You (the admin) can assign permission to departments and roles in Permission Quick Configuration, as shown in the following figure.
You (the admin) can assign permission to individual users in User's Final Permission, as shown in the following figure.
Permission Assignment Based on Roles
Permission Assignment Based on Positions
Permission Assignment Based on Users
The permission entity refers to the items on which permission is assigned, including Personnel Management, System Management, Data Connection, Data Platform, Scheduled Task, Real-Time Task, Pipeline Task, Data Service API, and Data Service App, as shown in the following figure.
To assign permission on Personnel Management or System Management, log in to FineDataLink as the super admin, choose System Management > Permission Management, click the icon, and enable Hierarchical Permission Management, as shown in the following figure.
The following table describes the details.
Hierarchical Permission Management
With this function disabled:
1. On the Data Platform tab page, you (the super-admin) can assign Use permission on Scheduled Task, Real-Time Task, Data Pipeline, Data Service, Database Table Management, Data Inspection, and Data Cleaning modules to users/departments/roles.
2. If the setting items in Resource Permission Control are not ticked, but the users have Use permission on a function module, they can manage all tasks in the function module.
With this function enabled:
You can assign the following permission to users/departments/roles:
Authorization permission on Personnel Management, System Management, Data Platform, Scheduled Task, Real-Time Task, Pipeline Task, Data Service API, and Data Service App
Management permission on Personnel Management
Use permission on System Management
If Data Connection Control is also enabled, you can assign Management and Authorization permission on data connections.
Data Connection Control
1. If the function is enabled only:
You can assign Use permission on data connections to users/departments/roles.
2. If this function and Hierarchical Permission Management are both enabled:
You can assign Management and Authorization permission on data connections to users/departments/roles.
Resource Permission Control
Scheduled Task
1. If users/departments/roles have Use permission on a function module that is unticked in Resource Permission Control, they have Management permission on all resources within that module by default.
For example, if Scheduled Task in Resource Permission Control is unticked and the user eoco has Use permission on the Scheduled Task module, then eoco has Management permission on all scheduled tasks in this module.
2. If you tick a function module in Resource Permission Control, you can subdivide resources in this module and assign permission to departments/roles/users accordingly.
Real-Time Task
Pipeline Task
API Service
Data Service App
Personnel Management
Users with Management permission can:
Add, delete, and modify certain departments.
Delete and modify certain roles.
Add roles and departments for some users.
Add, delete, and modify certain users.
For details, see Sub-Admin Permission Introduction.
Management Permission on Personnel Management
Users with Authorization permission can: Assign Management permission on Personnel Management to subordinate members.
Authorization Permission on Personnel Management
System Management
Use and Authorization permission on data connections
Permission Scope of Sub-admins
Use and Authorization permission on other platform modules
Data Connection
Users with Use permission can:
Use the data connection when setting scheduled tasks, pipeline tasks, data services, and managing databases and tables.
Data Connection Use Permission
Copy, rename, modify, and delete data connections within their permission scope.
Create, edit, and delete data connections within their permission scope.
Create server datasets using data connections within their permission scope.
Data Connection Management Permission
Users with Authorization permission can:
Assign corresponding permission on the data connection to other users within their management scope.
Data Connection Authorization Permission
Data Platform
Use permission on Data Development, Data Pipeline, Data Service, and Database Table Management modules
Data Platform Use Permission
Authorization permission on Data Development, Data Pipeline, Data Service, and Database Table Management modules:
You (the super admin) can assign Authorization permission on Data Platform to a user to make the user a sub-admin.
The sub-admin can assign Use permission on modules in Data Platform to subordinate members.
Data Platform Authorization Permission
Users with Management permission on Scheduled Task can:
View and edit specific folders and scheduled tasks.
Scheduled Task Management Permission
Authorization permission on Scheduled Task:
You (the super admin) can assign Authorization permission on scheduled tasks to a user to make the user a sub-admin.
The sub-admin can assign Management permission on scheduled tasks to subordinate members to allow them to view and edit the scheduled tasks.
Scheduled Task Authorization Permission
Real-time Task
Users with Management permission on Real-Time Task can:
View and edit folders and real-time tasks.
Real-Time Task Management Permission
Authorization permission on Real-Time Task:
You (the super admin) can assign Authorization permission on real-time tasks to a user to make the user a sub-admin.
The sub-admin can assign Management permission on real-time tasks to subordinate members to allow them to view and edit the real-time tasks.
Real-Time Task Authorization Permission
Users with Management permission on Pipeline Task can:
View and edit pipeline tasks.
Pipeline Task Management Permission
Authorization permission on Pipeline Task:
You (the super admin) can assign Authorization permission on pipeline tasks to a user to make the user a sub-admin.
The sub-admin can assign Management permission on pipeline tasks to subordinate members to allow the members to view and edit pipeline tasks.
Pipeline Task Authorization Permission
Users with Management permission on API Service can:
View and edit folders and APIs in Service List.
Data Service API Management Permission
Authorization permission on API Service:
You (the super admin) can assign Authorization permission on API tasks to a user to make the user a sub-admin.
The sub-admin can assign Management permission on the API tasks to subordinate members, allowing them to view and edit the tasks.
Data Service API Authorization Permission
Data Service App Permission
Users with Management permission on Data Service App can:
View and edit folders and apps in App List.
Data Service App Management Permission
Authorization permission on Data Service App:
You (the super admin) can assign Authorization permission on apps to a user to make the user a sub-admin.
The sub-admin can assign Management permission on apps to subordinate members to allow them to view and edit the apps.
Data Service App Authorization Permission
Use Permission on Load Management
Users with Use permission on load management can:
Configure Load Management settings.
Database Table Management Permission
This document describes how to assign Management permission on Database Table Management to users to allow them to view and edit databases in specified data connections.
Use Permission on Database Table Management
You (the super admin) can assign Authorization permission on Data Management to a user to make the user a sub-admin.
Sub-admins can assign Use permission on Database Table Management to subordinate members, allowing them to use the Database Table Management function.
Authorization Permission on Database Table Management
Data Inspection Permission
This document describes how to assign Management permission on Data Inspection to users to allow them to view and edit corresponding data inspection tasks.
Use Permission on Data Inspection
You (the super admin) can assign Authorization permission on Data Inspection to a user to make the user a sub-admin.
The sub-admin can assign Management permission on data inspection tasks to subordinate members to allow them to view and edit the tasks.
Authorization Permission on Data Inspection
Data Cleaning Permission
This document describes how to assign Management permission on Data Cleaning to users to allow them to view and edit data cleaning rules.
Use Permission on Data Cleaning
You (the super admin) can assign Authorization permission on Data Cleaning to a user to make the user a sub-admin.
The sub-admin can assign Management permission on data cleaning rules to subordinate members to allow them to view and edit the rules.
Authorization Permission on Data Cleaning
The permission type refers to the types of permission assigned to sub-admins, including Use, Edit, Management, and Authorization.
You need to enable Hierarchical Permission Management before assigning Use and Management permission on Personnel Management and System Management to other users.
After enabling Data Connection Control, you can assign Use permission on data connections to users. To assign Management and Authorization permission on data connection, you need to enable Hierarchical Permission Management.
If you assign Use permission on a function module in Data Platform to users without ticking the setting items in Resource Permission Control, the users will end up having Management permission on all resources in the function module. If you want to assign Management permission on a specific folder in the function module, you need to tick the corresponding setting item in Resource Permission Control.
You (the super admin) can assign Use and Management permission to sub-admins in Common Permission Configuration, as shown in the following figure.
If User A wants to assign permission on a function module to other users, User A should have Authorization permission on this module.
FineDataLink does not allow assigning Authorization permission by default. You (the super admin) need to enable Hierarchical Permission Management first to assign Authorization permission, as shown in the following figure.
After enabling Hierarchical Permission Management, you can assign Authorization permission to sub-admins, as shown in the following figure.
If a user occupies positions or roles of multiple departments among which hierarchical structures exist, you need to follow the permission logic when assigning permission.
For details, see Logic for Peer-Level Permission to Take Effect and Logic for Hierarchical Permission to Take Effect.
User first
For the same permission entity, user permission is prior to permission assigned to departments/roles. If user permission exists, it will take precedence over other permission.
Permission union
When a user belongs to multiple permission holders (departments/roles/positions) with configured permission, the user will inherit all permission.
Parent Nodes Overriding Child Nodes
For tree structures:
If you configure permission on a child node and then its parent node, the permission of the parent node will override that of the child node in the current and lower dimensions. For example, if a user is assigned Edit permission on Template One under Directory One and View permission on the parent node, then the user has both Edit and View permission on Template One.
If you revoke permission from a child node and then its parent node, the permission of the parent node will override that of the child node in the current and higher dimensions. For example, for users who are assigned Edit permission on Directory One, if you revoke View permission from a child node and Edit permission from its parent node in Directory One, users have no permission on the child node.
Child Nodes Not Affecting Parent Nodes
For tree structures, if you configure permission on a parent node and then its child node, the permission of the parent and the child node takes effect independently without affecting each other.
When viewing the permission configuration of System Management, the admin cannot confirm whether permission on child nodes is assigned to users/roles/departments if the permission entity directory on the right side is collapsed. An alternative way to confirm the permission configuration status is to check if the text representing each module is highlighted.
Partial selection highlighting applies to two permission types, namely Personnel Management and System Management. This section uses System Management as an example.
If permission is assigned on a child node, regardless of whether permission is assigned on the parent node, the child node name and its parent node name will both be highlighted. Once a child node is assigned the lowest permission, the parent node name will be highlighted.
1. If permission is assigned on a child node and its parent node, the effect is shown in the following figure.
2. If permission is assigned on a child node but not on its parent node, the effect is shown in the following figure.
If permission is assigned on neither the child node nor the parent node, they will have no text highlighting effects, as shown in the following figure.
滑鼠選中內容,快速回饋問題
滑鼠選中存在疑惑的內容,即可快速回饋問題,我們將會跟進處理。
不再提示
10s後關閉
Submitted successfully
Network busy