Setting permissions
When setting permissions, first define your initial users and roles. Then, construct your ACLs by setting permissions for the appropriate users and roles at the various nodes.
- In the ACL/Role Manager, click the ACLs tab.
-
Click a node to set permissions.
This shows the current permission settings for the node in the right pane of the ACLs tab.
-
Click Add.
This opens the Permission Modification dialog box.
-
Click Users/Roles.
This opens the Select Users/Roles dialog box, which lists all the available users and roles.
-
To select a user or role, click the listing.
Select more than one user or role to assign them the same permissions.
-
Click OK.
This closes the Select Users/Roles dialog box, and returns you to the Permission Modification dialog box. The users or roles that you selected are now listed in Users/Roles .
-
Specify the permissions to be granted or denied at this node by
clicking the appropriate options.
The run (execute) right is not available when you add or modify permissions on the node that delegates a configuration or a configuration set. For example, the config node under a site node or the netconfig node under config.Granting or denying a permission supersedes the setting at a higher-level node. Leave a permission as "Not Specified" to apply the setting that is specified at the next higher-level node. The applicable setting is determined by the ACL at the node closest in the hierarchy to the selected node.For example, a user is granted run permission at the node for a system root but denied it at the child node for a site. Leaving the run permission unspecified at
hcicmd
indicates that the user cannot run any of the commands that hcicmd contains. That same user could be explicitly granted run permission at the nodes for particular commands.Any permission that is not specified throughout the hierarchy is granted. -
Click OK.
This returns you to the ACLs tab, which now shows the newly added permissions. These permission settings apply to this node and all the nodes that it contains.