XpoLog help - Security 
 
General
XpoLog security is based on a standard called JAAS. It enables you to control and manage almost everything in the system for each user or group of users.
The security section in the help will go over the entities and main features of the mechanism.

Activation
To activate the security mechanism Select "Settings" from the menu and then click "General". Check the "Activate security" checkbox and save the configuration.
You will see the login page - the default user name is admin and the default password is admin.
Once logged in you will see more entries in the sliding menu which includes Security option.

Authentication
The authentication procedures are trivial. Once a user is added to the system by using the add user option in the Users view.
On login the user will be asked for user name and password.

Time out will occur according to the session life period which can also be modified in the settings view. As long as the browser window is open on XpoLog the session will not be terminated.


Authorization
Authorization is the general name for the mechanism which you use in order to allow or block operations to specific users and/or groups of users.
Each User is related to a group, and each group has a permission policy for operations. A policy is a set of permissions for operation in XpoLog such as changing the general settings, editing the configuration and so on. A user's list of permissions will be determine according to the the policy he is related to.

Authorization - Permissions
After you have defined policies you can define groups that will use those policies. XpoLog is initialized to contain two permanent groups. "All" which represents all entities in the system, and "Administrators" which represent all users that have super user permissions.
Once you have defined the policies and groups it is possible to add users to the system and associate them to the different groups.
The security help section contains explanations on  how to define users, groups, policies, and how to specifically set a monitor's, application's, folder's and log's permissions. 

Additional links
      Users and Groups
      Policies
      Log, Folder, and Monitor permissions