HP Storage Essentials Enterprise Edition Software manual 178

Table 13 Default Role Privileges by Elements (continued)

Options for Restricting a Role

In addition, you can assign one of the following options within a role to further allow or restrict access for a specific element:

•Full Control — Lets you view and modify the record for the element on the Asset Management tab, and perform provisioning if applicable.

•Element Control — Lets you view and modify the record for the element on the Asset Management tab. You cannot perform provisioning.

•View — Lets you only view element properties.

For example, if users belong to a role that only lets them view the element properties on storage systems, those users would not be allowed to perform provisioning on storage systems because their role does not have the Full Control option selected for storage systems. That same role could also have the Full Control option selected for switches, allowing the user to perform provisioning for switches. Thus, the user would not be able to provision storage systems, but would be able to provision switches.

You can modify roles and/or create new ones. For example, you can modify the Help Desk role so that the users assigned to this role can also view Reporter and modify servers.

About Organizations

IMPORTANT: Organizations only apply to elements in HP Storage Essentials. For example, a user assigned to an organization containing only hosts will only be able to view hosts in Storage Essentials; however, that user may be able to view all other elements in HP Systems Insight Manager.

You can use organizations to specify which elements users can access. For example, you can specify that some users have only access to certain switches and hosts. However, these users must already be assigned to roles that allow them to see switches and hosts.

140 Managing Security