User Management and Permissions in enteliWEB
Key Takeaway
How to create user accounts, assign roles, configure BACnet write permissions, and integrate Active Directory for enterprise SSO in enteliWEB.
Quick Answer
enteliWEB supports role-based access control with Administrator, Engineer, Operator, and View-Only roles. Users can be local accounts or authenticated via Active Directory/LDAP. BACnet write permissions and priority levels are configurable per role.
User Roles
- Administrator — Full access including system configuration, user management, and database administration
- Engineer — Point configuration, graphics editing, trend setup, and alarm configuration
- Operator — Monitor, acknowledge alarms, adjust setpoints within permitted ranges, view trends
- View-Only — Read-only access to graphics, trends, and alarm displays
Active Directory Integration
enteliWEB supports LDAP/Active Directory integration. Map AD groups to enteliWEB roles for centralized access management. Users log in with Windows domain credentials — no separate enteliWEB password required.
BACnet Write Priority
Configure the BACnet write priority per role. Operators typically write at Priority 8 (Manual Operator). Engineers may write at Priority 7 for overrides that take precedence over operator writes. Understanding BACnet priority array interaction prevents unexpected control behavior.
Audit Log
enteliWEB logs all operator actions including point writes, alarm acknowledgments, schedule changes, and login/logout events with timestamps and usernames. The audit log supports compliance requirements and post-incident investigation.
Frequently Asked Questions
Yes. enteliWEB supports LDAP/Active Directory integration, allowing Windows domain credential login and AD group-to-role mapping.
Configurable per role, typically Priority 8 (Manual Operator) by default. The write priority determines interaction with BACnet priority array sources like schedules (Priority 16).