Camera access rights setup for LDAP profiles

Q: What is the proper procedure for a staff member to be allowed to “monitor only” a security camera via LDAP without being able to change camera settings or view other cameras?

A: This is fairly simple to achieve through Xeoma client:

1) go Main menu -> Remote access -> Users -> LDAP properties and set up the connection details for the LDAP-server here;
2) in the same window you can set default permissions for the users (see the bottom of the window) – here you can check just the first box (that’s for preview) and uncheck everything else;
3) press OK and check the box Allow logon with an LDAP entry;
4) pick a user from the list and scroll down to the list of cameras on this server – you can uncheck everything but the one camera this particular user should be bale to look at.

Tip: starting from Xeoma 23.3.22, it is possible to also log in through web interface with an LDAP profile.

Valid as of May 16, 2023