BasicSysAgent (Basic Access administrator) is a user account with the ADMINISTRATOR role and the Basic Access type assigned. All Basic Access administrators can access the Basic Access Security administrator system by using the Basic Access mode of the Metasys system online user interface. For the BasicSysAgent default password, contact your local Johnson Controls representative.
The BasicSysAgent account is disabled by default. A Standard Access administrator must enable the BasicSysAgent account to grant a Basic Access administrator access to the Basic Access version of the Security Administrator system.
The Basic Access Security Administrator system provides the same capabilities as the standard Security Administrator system, except Basic Access administrators can only view and modify user accounts with the Basic Access type. All new local user and Active Directory service user accounts created in the Basic Access mode of the Security Administrator system default to the Basic Access type. Basic Access administrators cannot change Basic Access user accounts to Standard Access or Tenant Access in the Basic Access mode of the Security Administrator system. Only Standard administrators can change access type.
Administrators with Basic Access cannot create a local user or add an Active Directory service user account that has the same User Name as a Standard Access or Tenant Access user account. Basic Access administrators can add and remove Basic Access users from roles but cannot add or delete any roles.
In addition, Basic Access administrators cannot remove Standard Access or Tenant Access users from any role, cannot modify Role properties, and cannot modify system access or category-based permissions for any role.
All Metasys local system users and Active Directory service users who are Basic Access administrators can administer other Basic Access Metasys local system and Active Directory service users.