20 Managing Security

IMPORTANT: Depending on your license, role-based security may not be available. See the List of Features to determine if you have access to role-based security. The List of Features is accessible from the Documentation Center (Help > Documentation Center in Storage Essentials).

This chapter contains the following topics:

About Security for the Management Server, page 349

Managing User Accounts, page 355

Managing Roles, page 360

Managing Organizations, page 362

Changing the Password of System Accounts, page 367

Using Active Directory/LDAP for Authentication, page 369

About Security for the Management Server

The management server offers security based on the assignment of roles and organizations. Role-based security determines access to specific functionality depending on the user account assigned to a role. Organization-based security determines if you can modify an element type, such as hosts. The management server ships with the Everything organization, which lets you modify all element types.

See the following topics for more information:

About Roles” on page 349

About Organizations” on page 352

Planning Your Hierarchy” on page 355

Naming Organizations” on page 355

About Roles

The management server ships with several predefined roles, which are listed in the following table. These roles determine which components of the software a user can access.

For example, users assigned to the Help Desk role have access to Application Viewer and Event Manager, but not to System Manager, Provisioning Manager, Policy Manager, Backup Manager, and Reporter. Likewise, users assigned to the domain administrator role have access to all of the features, as shown in Table 25 on page 350.

HP Storage Essentials SRM 6.0 Installation Guide 349