In the Cloud Console, a role is a collection of permissions that defines the level of access granted to a user group. Permissions allow users to perform tasks such as performing backup, restore, and administrative operations (for example, license administration) on entities. To use role-based security, you must create a security association between user groups, a role, and service CommCells.
Before You Begin
-
You must be the service CommCell tenant administrator or a part of the master user group on the service CommCell.
-
Review the User Security Permissions and Permitted Actions by Feature.
Note
Users and user groups of a company are not allowed to associate with a role that grants permissions to the service CommCell or to all servers.
Adding a Role
-
From the Global Command Center navigation pane, go to Manage > Config blueprint > Security.
-
CLick the Roles tile.
The Roles page appears.
-
Click Add Role.
The Add Role dialog box appears.
-
Enter a role name.
-
To add permissions, select the check box next to the permission.
-
Click Save.
-
On the Targets tab, in the upper-right area of the table, click Add.
The Add dialog box appears.
-
From the Target list, search and select the required target.
-
Click OK.
-
Click Save.
Modifying a Role
-
From the Global Command Center navigation pane, go to Manage > Config blueprint > Security.
-
CLick the Roles tile.
The Roles page appears.
-
Click the role name.
The Edit role dialog box appears.
-
Add or remove permissions:
-
To add a permission, select the check box next to the permission.
-
To remove a permission, clear the check box next to the permission.
-
-
Modify the security associations:
-
Select the Enable role check box to enable the security associations that use the role.
-
Remove the selection for the Enable role check box to disable the security associations that use the role.
-
-
Click Save.