Tutorials

Managing Access to Cryptocurrency Miners

Along with the ability to collaborate with your team and share a single, common dashboard, Foreman provides a robust user management system that allows company administrators to group users and perform fine-grained access control. This allows operators, financial investors, system administrators, etc, to each interact with Foreman differently, with groups and permissions established by trusted team members.

The following are some common examples of how these permissions are used, but they can be heavily customized to fit your needs:

  • Allow operator access while preventing their ability to change ASIC mining pools
  • Allow financial investors to view the Profit Report while keeping them from interacting with the miners
  • Allow users to reboot cryptocurrency mining devices without letting them view daily earnings
Configurable permissions available as of June 25, 2021.

Permission Legend

Add Miners

This permission controls who is allowed to add miners to Foreman, limiting usage of the 'Add Miner' button as well as bulk importing. For a colocation/miner hosting facility, it's recommended that this permission only be added to Administrators to prevent customers from adding neighboring miners in the same subnet.

Assign Miner Static IPs

This permission controls who is allowed to perform the manual or bulk 'Network' action to pivot a miner from DHCP to static IPs.

This permission controls who is allowed to perform the manual or bulk 'Blink LEDs' action, which causes a miner's LEDs to flash for up to 20 minutes (configurable).

Change Miner Passwords

This permission controls who is allowed to change miner management console passwords (the password that's used to access the manufacturer-provided ASIC management page).

Change Pools

This permission controls who is allowed to change the miner's pools. It is recommended that this permission only be given to trusted individuals to prevent a malicious insider from changing worker names and stealing hash rate.

Change Power Mode

This permission controls who is allowed to change the miner's power mode (sleeping vs. mining).

Edit Company Settings

This permission controls who is allowed to edit the Company Settings.  Users with this permission are able to add/remove users and manage their permissions.  Additionally, this permissions controls who can modify MiningRigRentals and Pool API keys.

Edit Dashboard Pages

This permission controls who can enter the Page Builder and modify the dashboard by adding, removing, resizing, and repositioning blocks.

Edit Miners

This permission controls who is allowed to edit the Foreman-specific miner settings (tags, expected hash rate, temperature, fan speed ranges, current power draw, etc).  Users with this permission are also able to view the miner's current management password.

Option to edit miner settings.

Edit Site Map

This permission controls who can edit the Foreman Site Map (add/remove miners, add/remove groups and racks, change miner placements).

Edit Triggers

This permission controls who can view and modify the automated, miner-based triggers that are established in Foreman.

Factory Reset Miners

This permission controls who is allowed to perform a factory reset of a miner, which also does an initial pool assignment.  It is recommended that this permission only be given to trusted individuals to prevent a malicious insider from changing worker names and stealing hash rate.

Power Control

This permission controls who is allowed to view, create, and run power curtailment plans. It is recommended that this permission only be given to individuals who can be tasked with putting miners to sleep during critical load shedding events.

Setup Reports

This permission controls who can configure Reports on another user's behalf. This allows a user to add other Foreman and non-Foreman users to automated report emails.

Sub-Client Admin

An optional permission that is only available for Foreman-registered consultants and colocation/miner hosting facilities. This controls who can access sub-dashboards associated with the account. Example: an operator working at My Consultant Company may only have permission to manage miners from the global parent dashboard, but they may not be a Sub-Client Admin, which prevents them from accessing the customer's sub-dashboard and making changes there.

View Financials

This permission controls who can view financial-related information in Foreman. Users with this permissions are able to see financial statistic blocks as well as the Earnings page.

View Security

This permission controls who can view the Security page, which contains all currently configured miner passwords and the security risk assessment associated with the account.  It is recommended that this permission only be given to trusted individuals.

View Worker Names

This permission controls who can view the Workers page in Foreman, which contains an index of all of the active and configured miner worker names and accounts.

Stay tuned for more updates! If you have any questions, contact us on Discord, Twitter, or send us an email!

Master Your Mining with Foreman. Try it for free today!