Orchid Hybrid/Fusion VMS allows Administrators to set granular permissions through the Permission Groups feature. This means that Administrators may create custom permission sets, and will be able to:
- Define groups of users, each with different permissions
- Add Permission Groups as “users” of other Permission Groups (nested groups)
- Assign combinations of individual abilities (Live, Playback, PTZ, Export, and Talk)
- Grant and revoke permissions at both the server and camera levels
Using Permission Groups can decrease the Administrator’s workload by eliminating the need to enter every detail for each user, and reducing the need for future maintenance. A solid permission strategy, however, will require some planning.
*You must be a member of an Administrator group to add and manage Permission Groups.
*To configure Orchid Fusion VMS to work with Active Directory, Microsoft Entra ID/Azure A-D, FreeIPA, or SAML, the Administrator will first need to edit the Orchid Fusion VMS properties file. (Please refer to the Orchid Fusion VMS Installation Guide for detailed instructions.) On Hybrid systems, IPConfigure Support staff must edit the properties file to work with these external authentication providers. To create Permission Groups for any of these external authentication providers, please refer to the following section: Add a Permission Group for an External Authentication Provider.
*Beginning in version 23.12, Orchid Fusion VMS supports Single Sign-on using SAML (which works with a variety of identity providers, or IdPs). Administrators will need to edit the Orchid Fusion VMS properties file, and perform some configuration tasks on the IdP. These steps will vary based on the IdP. (For detailed instructions, please start with the Enabling Single Sign-On with SAML section in the Orchid Fusion VMS Installation Guide.) On Hybrid systems, IPConfigure Support staff must perform the configuration tasks on the selected IdPs.
Post your comment on this topic.