VMS User Management Guide

By: Sarit Williams, Published on Dec 03, 2013

Properly managing user access to video management systems is a key factor, especially in larger systems that consist of dozens, hundreds or even thousands of recorders. In this guide, we explain tradeoffs of different approaches to user management and the common options available to do so. 

User Management Options

Type: 4 main approaches exist: local recorder user management, proprietary enterprise user management, Active Directory / LDAP integration and multi-system user management

Default: All VMSes will have a default account created, usually named Administrator that is used as the first account to log into the VMS.

Groups: User grouping can be used to manage a set of users based on roles.

Privileges: When creating users each VMS will require selecting either specific pre-existing privileges assigned for a role/group the user is added to or selecting a custom set of privileges for the user. Furthermore, privileges for a specified user may differ across cameras or servers for the organization.

Auto Login: In some cases the VMS client will have the option to save the user's credentials and automatically login each time the client is used.

Multi-Server: The most common user management problem is when dealing with multiple servers / recorders so that users can be managed across those servers.

User Creation

Most VMSes have several ways to create users in a VMS, some taking longer than others to setup.

Get Notified of Video Surveillance Breaking News
Get Notified of Video Surveillance Breaking News

  • VMS User Manager: Using this method usually requires the user's full name, username, role and password
  • Active Directory: This method leverages Windows domain management to import already created users and give them access to the VMS. This saves the administrators time by reducing the redundancy of creating the same user in multiple applications. Furthermore, it allows the end user to use a single password for domain and VMS for example.

Windows user import:

Privileges

Privileges granularity and feature options will vary among VMSes and which features are available for specific security setting. Some VMSes may bundle feature privileges together;for example, if a user has access to PTZ, they will have access to view a camera live by default.

Default Account

All VMSes will likely already have an 'Administrator' or 'Admin' account created that is used to create all other users.  The account may or may not have a password assigned, check the VMS's manual for details.

Like all default passwords, be careful about changing the password. Otherwise, others can look up the default password online and get access to the entire system.

Groups

Some VMSes may already offer pre-created user groups with applicable privileges to allow admins to add users quickly by adding minimal user information. Other VMses don't offer pre defined groups and require the administrator to create them.  Moreover, imported Domain groups will still need to have VMS privileges configured.

Additionally, some VMSes allow creating custom groups and associating specific privileges / features / cameras to that group.

Auto Login

Once a user has been created, most VMS clients will allow a configurable setting for end users to save the credentials in settings to bypass the login prompt and allow for faster login. The credentials may be Windows Domain or newly created VMS credentials.

Logging / Auditing Use

Creating and enforcing unique users is critical if one ever wants to audit activities in the VMS. For instance, if you want to know who exported a certain video clip or who changed a camera setting, letting everyone use a generic 'admin' account, will make that very difficult.

Multi Server User Management

In larger systems, users will frequently need access to dozens, hundreds or even thousands of recorders. They clearly will not want to remember / recall a unique password for each.

  • Duplicate user: Create the same user with same credentials in each recorder. When this is done, usually the same password is shared by all and rarely, if ever, changed (since it is so time consuming to do so). This is almost as insecure as simply using the default admin password.
  • VMS User Management proprietary software: provided by the manufacturer to manage security and access for all servers. This will usually be available for Enterprise level editions and may require an additional charge. An additional software or appliance is added that acts as a traffic cop between users and recorders, maintaining centralized user management. One downside is the risk of this piece being offline / unavailable.
  • Use Active Directory and or LDAP: Create a domain user once and import to the proper server while setting server specific privileges. This can be done for users or group of domain users and will sometimes need to be synchronized.
  • Multiple Systems proprietary integration: Called 'federation' by a number of VMSes, this allows sharing access to resources across different systems (e.g., airport and the police department) typically only from the same manufacturer. This is not commonly available and typically requires additional licenses / fees.

 

Comments (0) : Members only. Login. or Join.

Related Reports

Access Controller Software Guide on Dec 11, 2017
Properly configuring access controllers software is key to a professional access system. These devices have fundamental settings that must be...
Use Access Control Logs To Constrain Coronavirus on Apr 09, 2020
Access control users have included capabilities that are not commonly used that can help zero-in and discover potential Coronavirus hotspots in a...
Genetec Mission Control Tested on Jul 13, 2017
Genetec continues to move up market with their Mission Control, "Decision Support System", bringing PSIM-like procedures and incident management to...
Top Video Surveillance Service Call Problems (Statistics) on Feb 28, 2018
In our most recent statistics series, over 150 integrators told IPVM the most common problem their customers have with their video systems....
Access Control Commissioning / Install Checklist on Aug 03, 2017
This 80+ point checklist helps end users, integrators and consultants verify that access control installation is complete. It covers the following...
Integrator Help Desk Software Usage (Statistics) on Mar 19, 2018
Maintaining accounts and customer satisfaction often depends on the effectiveness of responding to issues. Keeping an integrator's support...
Favorite Software For Remotely Supporting Video Surveillance Systems on Feb 07, 2018
Being able to remotely support video surveillance systems is important both to reduce costs (eliminating truck rolls) and for...
VMS 101 on Mar 03, 2020
This guide teaches the fundamentals about video management software. Inside, we cover: NVR vs VMS Viewing Video - What are common client...
VSaaS 101 on Mar 25, 2020
Video Surveillance as a Service (VSaaS) is the common industry term for cloud video. But what does it mean? How does it all work? Inside this...
Worst Features for Camera Installation (Statistics) on Jun 07, 2018
4 clear worst features for installing were identified by 140+ integrator respondents to: What feature(s) make a camera hard to install? The...

Most Recent Industry Reports

Startup Duranc Presents AI VSaaS on Jul 06, 2020
Duranc presented its system at the May 2020 IPVM Startups show. A 30-minute video from Duranc including IPVM Q&A Background on the...
Low Voltage Nation Wants to "Help You Carve Out A Fulfilling Career" Interviewed on Jul 06, 2020
It is difficult to make your way in this industry as there is little formal schooling. However, one person, Blake Urmos, the Founder of Low Voltage...
The Next Hot Fever Detection Trend - $100 Wall-Mounted Units on Jul 06, 2020
The first wave of the booming fever detecting market was $10,000+ cameras, now interest for ~$2,000 tablets is high and the next big thing may be...
Cisco Meraki Unlocks IP Cameras With RTSP Tested on Jul 06, 2020
Meraki opened up its cameras to 3rd party NVRs/VMSes by offering RTSP streaming because of "the need to solve a business problem". We tested...
Verkada: "IPVM Should Never Be Your Source of News" on Jul 02, 2020
Verkada was unhappy with IPVM's recent coverage declaring that reading IPVM is 'not a good look' and that 'IPVM should never be your source of...
Vintra Presents FulcrumAI Face Recognition on Jul 02, 2020
Vintra presented its FulcrumAI face recognition and mask detection offering at the May 2020 IPVM Startups show. Inside this report: A...
Uniview Wrist Temperature Reader Tested on Jul 02, 2020
Uniview is promoting measuring wrist temperatures whereas most others are just offering forehead or inner canthus measurements. But how well does...
Dahua USA Admits Thermal Solutions "Qualify As Medical Devices" on Jul 02, 2020
Dahua USA has issued a press release admitting a controversial point in the industry but an obvious one to the US FDA, that the thermal temperature...
Access Control Online Show - July 2020 - With 40+ Manufacturers - Register Now on Jul 01, 2020
IPVM is excited to announce our July 2020 Access Control Show. With 40+ companies presenting across 4 days, this is a unique opportunity to hear...