Table of Contents
Advertisement
CHAPTER 7: USER MANAGEMENT
7.1 SETTINGS
Once you power up IoT Web for the first time you are logged in as a default user.
The default user is iot with the password iot.
Once you click on User Management from top left menu, you have the ability to change that setting. Every user has a
database-wide, 16-bit field of access rights. One of the bits defines a user as the default user.
The default user is always logged in and is never automatically logged out unless you manually log the user out. On all
web screens you see the current logged in user in the middle of the top banner. Clicking on that name leads you to
logging out.
Even if you defined a default user (with all or restricted access rights) you can log that user out and log in as another
user with extended access rights.
For security reasons, IoT Web never stores any cookies on your computer. For every connection, a file is stored on
IoT Web. You can find that file in /tmp and it´s name is "U-xyz," where xyz is the IP Adress of the logged in user in
hexadecimal format.
Also, for security reasons, every connection and login data is valid for one hour using that IP Address and that browser.
This enables you to bypass any Client methods of keeping the connection alive, and no one can retrieve login data
from computers logging in. Furthermore, stored passwords on the client may help while logging in, but no automated
process will take place.
With access rights, you can define which functionality is allowed for that user. Can access settings, can access logs,
can access user management, and can amend sensor settings enables the corresponding access. With can see all
dashboards right enabled, that user can see all defined dashboards. With that access right disabled, that user can only
see the user-defined dashboards.
As the administrator, you can set up any user and define dashboards and dashboxes. If you bundle that feature with
can amend dashboards, you have a defined and unchangeable view for that user.
Users with the Datamanipulation option selected get an option when amending a dashbox.
Datamanipulation means that the system analyzes historical data and provides the option to remove values from
historical data either being twice or four times higher or lower than the average. Since some sensors, especially virtual
sensors using WGET method, sometimes produce useless values, this is a nice way to clean up data.
CAUTION: Be careful when enabling Datamanipulation, since data can only be restored through a database backup
restore if something is removed by mistake.
If you locked yourself out or forgot your password, use the CLI/Bash of HDMI/USB Output of your IoT Web. To do this
create a file in /tmp with name resetme while IoT Web is running.
The file content is not important, since the file creation causes the user credential database to be reset to factory
default and IoT Web to restart.
CAUTION: For those that use a centralized database using SQL, this method will erase the credentials on the
centralized database.
1.877.877.2269
BLACKBOX.COM
NEED HELP?
LEAVE THE TECH TO US
LIVE 24/7
TECHNICAL
SUPPORT
1.877.877.2269
27
Advertisement
Table of Contents
