Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual page 76

Configuring infranet controllers guide

Hide thumbs Also See for NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01:

Manual (444 pages)

Administration manual (1026 pages)

Installation manual (244 pages)

Table Of Contents

100

101

102

103

104

105

106

107

108

109

110

111

112

113

114

115

116

117

118

119

120

121

122

123

124

125

126

127

128

129

130

131

132

133

134

135

136

137

138

139

140

141

142

143

144

145

146

147

148

149

150

151

152

153

154

155

156

157

158

159

160

161

162

163

164

165

166

167

168

169

170

171

172

173

174

175

176

177

178

179

180

181

182

183

184

185

186

187

188

189

190

191

192

193

194

195

196

197

198

199

200

201

202

203

204

205

206

207

208

209

210

211

212

213

214

215

216

217

218

219

220

221

222

223

224

225

226

227

228

229

230

231

232

233

234

235

236

237

238

239

240

241

242

Table of Contents

NSM Infranet Controller Configuration Guide

Table 10: Administrator Role Configuration for Delegation (continued)

Option

Function

Allow

Allows the security

Add/Delete

administrator to create and

admin realms

delete administrator realms,

even if the security

administrator is not part of

the administrators role.

Access

Indicates the level of realm

access that you want to

allow the security

administrator role to set for

system administrators for

each major set of admin

console pages (General,

Authentication Policy, and

Role Mapping.)

Delegated Resource Policies > All tab

Access

Indicates the level of access

that you want to allow the

administrator role for each

Resource Policies sub-menu

Delegated Resource Policies > All (Custom Settings for Infranet Enforcer, Network

Access, and Host Enforcer)

Additional

Sets custom access levels

Access Policies

for an individual policy

Policies

Provides custom access

level.

Your Action

Select to allow the security administrator to

add and delete admin realms.

Select Deny All to specify that members of

the security administrator role cannot see or

modify any settings in the category.

Select Read All to specify that members of

the security administrator role can view, but

not modify, all settings in the category.

Select Write All to specify that members of

the security administrator role can modify

all settings in the category.

Select Custom Settings to allow you to pick

and choose security administrator privileges

(Deny, Read, or Write) for the individual

features within the category.

NOTE: All administrators that can manage

admin roles and realms have at least read-only

access to the admin role's Name and

Description and to the realm's Name and

Description, as displayed on the General tab.

Select Deny All to specify that members of

the administrator role cannot see or modify

any resource policies.

Select Read All to specify that members of

the administrator role can view, but not

modify, all resource policies.

Select Write All to specify that members of

the administrator role can modify all

resource policies.

Select Custom Settings to allow you to pick

and choose administrator privileges (Deny,

Read, or Write) for each type of resource

policy or for individual resource policies.

Select the access level for the policy (Deny,

Read, or Write.)

Select the resource policy for which you want

to provide a custom access level, and click Add.

Table of Contents

Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01 Manual page 76

Related Manuals for Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01

Related Products for Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING INFRANET CONTROLLER GUIDE REV 01

Table of Contents