Having different user access separate dashboards and information in Ubidots allows an Administrator to parse out controls and resources for any project or application to those who need it. For example, in an industrial environment, one might want a machinist to have access to specific dashboards for daily machine uptime and operations, but only allow the administrative team access to the historical data for assistive machine analytics and preventive maintenance. Ubidots' user management features lets you create users and decide "who sees what" - granting or restricting access to any Ubidots powered IoT application.
To begin, we want to provide some internal definitions for the Ubidots software:
An Organization refers to a company, a specific department, an IoT application, or an end-user that manages specific users, devices, and dashboards. Each organization can have its own specific users, devices, and dashboards. The Administrator of an Ubidots account can parse out organizations based on their business criteria and applications design. After all - with Ubidots - the user is the application builder and designer.
First, open your Ubidots for Business account and go to Organizations to select or Add organization which you wish to work with. In this case, we will work with an organization called “Smart Energy”:
For creating a new organization you just need to click the "Add organization" icon and using the options within the left pane, assign device, limits, users, and groups to any organization.
Create and Assign Users
Once in Smart Energy we can create and assign users by click -> Create user from the left hand pane.
Next, create and assign an Ubidots profile containing three data inputs for your end-user: user ID, valid email, and password. These credentials are assigned by the application’s Administrator and can be modified, as needed by said Administrator only.
After assigning credentials for an end user, Ubidots for Business will ask which level of access this user should receive: Explorer, Viewer, Dashboard Viewer, and Managers. Administrators can designate one or more permissions to any user.
- Explorers: can create, edit, view, and delete dashboards and events. They can view the devices, variables, and values, but can't edit or delete these.
- Viewers: can view dashboards, devices, variables and their values, but can't create, edit, or delete them.
- Dashboard viewers: can only see data dashboards of their organization.
- Managers: can do everything an admin can do, except creating, editing, or deleting users.
- Create your own: using Groups, you can custom create user access permissions as you see fit.
- Administrator: the default user of Ubidots who assigns user management roles. Only one username and email can be associated to an Ubidots for Business account as an administrator.
Across these 4 different user access options, Ubidots allows a system administrator to customize 27 different levels of permissions to create highly customized roles groups and access.
To customize permissions, go to Groups, just below Users in the Organization's left pane menu and create a new group with ant specific set of permissions you require.
Assigning Devices to Organizations
To do so, in the organization's left pane menu choose Devices. A popup like the one below will appear with all the connected devices associated with an account, select one or multiple devices to add to an organization. You can choose as many devices as you want for a particular organization and its users.
User Management: For simple user management, you can delete any permissions using the little "x" displayed in the top right of each user's permission. You can click the key icon to alter a user's password; and, when needed, the trashcan deletes an user entirely.
Check out the video tutorial below for additional assistance in creating a user and assigning permissions in Ubidots for Business.