Juniper NETWORK AND SECURITY MANAGER 2010.4 - CONFIGURING SECURE ACCESS DEVICES GUIDE REV 01 Manual page 63

Copyright © 2010, Juniper Networks, Inc.
Table 11: Administrator Role Configuration Details (continued)
Option
Access
Delegated Users Settings > Realms > Delegate As Read-Only Realms
Administrator can view (but
not modify) ALL realms
Delegated Administrator Settings > Management of Admin roles
Manage ALL admin roles
Allow Add/Delete admin roles
Chapter 6: Configuring User Roles and Administrator Roles
Function
Specifies which user
authentication realms pages
that the delegated
administrator can manage.
Allows the administrator to
view the user authentication
realms, but not modify.
Manages all admin roles.
Allows the security
administrator to create
administrator roles, even if
the security administrator is
not part of the Administrators
role.
NOTE: This option appears
only when you enable the
Manage All admin roles
option.
Your Action
Select an access option from
drop-down list.
Select Write All to specify
that members of the
administrator role can modify
all user authentication realm
pages.
Select Custom Settings to
allow you to pick and choose
administrator privileges
(Deny, Read, or Write) for the
individual user authentication
realm pages.
Select the user authentication
realms that you want to allow
the administrator to view.
NOTE: If you specify both write
access and read-only access for
an authentication realm page,
the Secure Access device grants
the most permissive access.
Select Delegated Administrator
Settings > Management of
Admin roles > Manage ALL
admin rolesto manage all the
admin roles.
Select to allow the security
administrator to add and delete
admin roles.
45