Role-Based Access Control; Session Management; Table 4 Predefined Web Tools Roles - Brocade Communications Systems 8 Administrator's Manual
Supporting fabric os v6.4.0
Hide thumbs
Also See for 8:
- Command reference manual (1080 pages) ,
- Reference (842 pages) ,
- Reference manual (382 pages)
Table of Contents
Advertisement
1
Role-Based Access Control
•
Role-Based Access Control
Role-Based Access Control (RBAC) defines the capabilities that a user account has based on the
assigned role. For each role, there is a set of predefined permissions on the jobs and tasks that can
be performed on a fabric and its associated fabric elements.
When you log in to a switch, your user account is associated with a predefined role. The role
determines the level of access you have on that switch and in the fabric.
roles.
TABLE 4
Role
admin
operator
securityadmin
switchadmin
zoneadmin
fabricadmin
basicswitchadmin
user
For information about changing user account roles, refer to
Session management
A Web Tools session is the connection between the Web Tools client and its managed switch. A
session is established when you log in to a switch through Web Tools. When you close Switch
Explorer, Web Tools ends the session.
A session remains in effect until one of the following happens:
•
•
•
A session automatically ends if no information was sent to the switch for more than two hours.
Because user key strokes are not sent to the switch until you apply or save the information, it is
possible for your session to end while you are entering information in the interface. For example,
entering a zoning scheme in the Zoning module does not require you to send information to the
switch until you save the scheme.
14
DRAFT: BROCADE CONFIDENTIAL
Your session times out.
Predefined Web Tools roles
Description
You have full access to all of the Web Tools features.
You can perform any actions on the switch that do not affect the stored configuration.
You can perform actions that do not affect the stored configuration.
You can perform all actions on the switch, except the following:
•
You cannot modify zoning configurations.
•
You cannot create new accounts.
•
You cannot view or change account information for any accounts. You can only
view your own account and change your account password.
You can only create and modify zones.
You can do everything the Admin role can do except create new users.
You have a subset of Admin level access.
You have nonadministrative access and can perform tasks such as monitoring
system activity.
You log out
You close the Switch Explorer window
The session ends due to inactivity (time out)
Table 4
describes these
"User-defined accounts"
on page 207.
Web Tools Administrator's Guide
53-1001772-01
Advertisement
Table of Contents
Troubleshooting
