Managing Sheer DNA Security
Cisco Systems, Inc. Page 137
• Operator: Configure business tags and manage most day-to-day
operations.
• Viewer: View only access to the network and to non-privileged system
functions.
Note: Roles can be granted per scope or at an application level (namely, all
the activities that are related to GUI functionality, not the activities related to
devices). Users can have different roles for different scopes. Role
functionality is incremental.
The table below illustrates the functionality per role according to the default
permission and Scope based functionality:
Role Default Permission Based
Functionality Scope Based Functionality
Administrator
Platform management:
• Manage DNA Servers,
AVMs, transport and VNEs
• Global setting: Managing
polling groups, protection
groups, client licenses and
service disclaimers
• View DB segments
• Create/delete scopes
• Manage user accounts
• Manage static topology links
• Manage VNEs from Sheer
DNA Manage or Sheer
NetworkVision
Map management:
• Open, edit, delete all user
maps
Configurator
Map management:
• Create maps
Advanced tools:
• Ping and Telnet a NE directly
from the client
• Enable/disable port alarms
• Sheer DNA Command
Builder
Activation services:
• Allow activation commands
per managed NE