HP ProLiant DL380G5-WSS 3.7.0 HP StorageWorks HP Scalable NAS File Serving Sof - Page 227
Tips for specifying accounts, View effective rights
View all HP ProLiant DL380G5-WSS manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 227 highlights
Form. Specify whether you entered a name or an ID for the account. Tips for specifying accounts When specifying accounts for a role, you should be aware of the following: • To simplify Role-Based Security administration, specify groups instead of users wherever possible. • Specify groups that are valid for all servers in the cluster. NOTE: HP Scalable NAS will not prevent you from adding users or groups that are not valid on all nodes. For example, you can add local users or groups to a role, but these users and groups have the permissions of the role only on the local server and are not valid role members on the other servers. View effective rights The My Rights tab on the Role-Based Security Control Panel lists the effective rights that you have on the cluster. Effective rights are the sum of the rights provided by all of the roles to which you belong. Allowed operations are indicated by a checkmark. Denied operations are indicated by an X. The Role memberships pane at the bottom of the My Rights tab shows the roles to which you belong. Roles that are disabled appear in italics. In the following example, the user has logged on as a member of the local Administrators group and is therefore a member of the default System Administrator role. This group is allowed to perform all cluster operations. However, the user also belongs to the Deny Storage group, which disallows the ability to perform storage operations. Because the deny right overrides the allow right provided to the System Administrator group, this user is denied the ability to perform storage tasks. The Security resource is a special case. All members of the System Administrator role are allowed to perform Security tasks, even if they belong to another role that denies that right. If you belong to the role because you are a member of group that is either directly or indirectly assigned to the role, that group will be listed under the Assigned Group column in the Role memberships pane. In this example, the user belongs to a group that is a member of the default System Administrator role. For the Deny Storage role, HP Scalable NAS File Serving Software administration guide 227