HP StorageWorks 4/64 Brocade Fabric OS Command Reference Guide v6.1.0 (53-1000 - Page 27
Using Fabric OS Commands, Understanding role-based access control
View all HP StorageWorks 4/64 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 27 highlights
Using Fabric OS Commands Chapter 1 This chapter explains how to manage a Brocade SAN and Brocade switches and directors using the Fabric OS command line interface (CLI). The following topics discussed: • "Understanding role-based access control" on page 1 • "Understanding admin domain restrictions" on page 2 • "Using the command line interface" on page 2 Refer to the Fabric OS Administrator's Guide for information regarding optionally licensed features and configuration and management procedures. Understanding role-based access control Fabric OS implements Role-Based Access Control (RBAC) to control access to all Fabric OS operations. Seven roles are supported, as defined in Table 1. Role definitions are guided by perceived common operational situations and the operations and effects a role is permitted to have on a fabric and individual fabric elements. TABLE 1 Role definitions Role Name Definition User Nonadministrative use, such as monitoring system activity Operator A subset of administrative tasks typically required for routine maintenance operations SwitchAdmin Administrative use excluding security, user management, and zoning ZoneAdmin Zone management only FabricAdmin Administrative use excluding user management and Admin Domain managment BasicSwitchAdmin A subset of administrative tasks, typically of a more limited scope and effect Admin May perform all administrative tasks SecurityAdmin Administrative use including admin, security, user management, and zoning Appendix A, "Command availability" explains the Role-Based Access Control checks in place to validate command execution, and provides the RBAC permissions for the commands included in this manual. Fabric OS Command Reference 1 53-1000599-02