Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

Anchor
_Web_access_permissions
_Web_access_permissions
Web access permissions

Easy heading
linkText4
linkText10
linkText3
linkText6
linkText5
relatedLinksLabels
linkText2
linkText1
headingTagsH1,H2,H3
sidebarMaxHeight450
linkType2Page
linkType3Page
linkType1Page
linkType10Page
sidebarTitleON THIS PAGE
linkUrl3
linkUrl4
linkUrl1
linkUrl2
linkUrl10
includedPageModeDisable_Included_Pages
linkText8
linkText7
relatedLinksOrderLabels_First
sidebarModeOpened
headingNumberingModeDisable_Numbering
linkText9
sidebarMarginRight20
relatedLinksTargetNew_Window
relatedLinksTitleRELATED LINKS
linkUrl9
linkUrl7
linkUrl8
numberedHeadingTagsH1,H2,H3
linkUrl5
linkUrl6
linkType8Page
linkType9Page
linkType6Page
headingLinkTextModeWrap
linkType7Page
linkType4Page
linkType5Page
sidebarWidth240
sidebarTop160
headingLinkExpandModeCollapse_All_By_Default
headingLinkIndent10

For On-Premises Deployment of GYTPOL

After the initial setup, the GYTPOL web UI is accessible to the "Authenticated Users" domain group. However, it is possible to restrict access to the web UI by creating a specific security group that includes only users who should be allowed access. The permissions for each member can then be established and controlled through the "Roles and Permissions" screen, as illustrated below.

...

Ensure that you maintain JSON formatting and utilize a double slash for the domain\group value.

For SaaS Deployments

If SAML integration hasn't been set up, you can request your GYTPOL Customer Success Manager to create local users in your cloud tenant.

If you prefer to use SAML IdP, please refer to this guide: SaaS IdP (SAML) Integration Manual

Role based access control setup

Once the server installation/update is complete, and the previously mentioned modifications have been applied, please proceed with the RBAC setup.

Please open the GYTPOL UI and click the gear icon Settings Roles & Permissions

...

Write the desired role name (i.e., Full Admin, Security Team Admins, Windows Server team etc.)

Add Scope

...

Select the relevant scope, i.e., Admin for Full Admin access, Windows endpoints or servers, Linux etc.

Once added, you can add additional permission scopes if needed.

...

On-Prem deployment:

Click the "Add member" button and input the appropriate username to associate it with the chosen scope, then click "Add”. Please note that the username should follow the syntax DOMAIN\USERNAME, and AD Security Groups are not supported in this context.

It is important to keep in mind that the user, even when added to specific scopes, must be a member of the groups utilized for GYTPOL access and management. The relevant groups can be found in the "websrv_config.json" file located at "c:\gytpol\data\webSRV” as explained in the Web access section.

...

SaaS deployment:

Please choose the user from the dropdown list of users.

...

  1. You can add additional users to that role. Once finished, click Apply.

  2. Refresh GYTPOL homepage and access Roles and Permissions page.

  3. The effective access permissions will be displayed in bold format.

...