12 Managing authorizations
12.1 Users
You use the Authorizations → Users menu to manage the local user accounts of all MUs of
the SE server configuration and the attributes of the accounts (exception: service account).
Accounts are MU-global, i.e. every account exists on every MU of the SE server
configuration and always has the same attributes.
In addition to local accounts, you can also release or lock LDAP accounts for usage on the
MUs of the SE server configuration, which are centrally managed on a connected LDAP
server (see
For the administration and operation of the SE server, the administrator can assign the
following roles to the accounts:
Administrator
●
BS2000 administrator
●
Operator
●
XenVM administrator
●
AU administrator
●
This role is used to configure and manage the Application Units and the systems which
run on them.
Service
●
The SE Manager only displays this role or the user accounts with this role. A service
account cannot be administered in the SE Manager.
Detailed information on the various roles is provided in
page
47.
U41855-J-Z125-3-76
section "Managing accounts" on page
300).
section "Role and user strategy" on
299