HP Storage Essentials File System Viewer Software manual 158

•Element Control - Lets you view and modify the record for the element (Asset Management tab). Provisioning cannot be performed.

•View - Lets you only view element properties.

For example, if a user belongs to a role that only lets you view the element properties on storage systems, that user would not be allowed to perform provisioning on storage systems because their role does not have the Full Control option selected for storage systems. That same role could also have the Full Control option selected for switches, allowing the user to perform provisioning for switches. Thus, the user would not be able to provision storage systems, but the user would be able to provision switches.

You can modify roles and/or create new ones. For example, you can modify the Help Desk role so that the users assigned to this role can also view Reporting and modify servers.

About Organizations

IMPORTANT: Organizations only apply to elements in HP Storage Essentials. For example, assume you assigned a user to an organization containing only hosts. That user will be able to view only hosts in Storage Essentials; however, that user may be able to view all other elements in HP Systems Insight Manager.

You can specify which elements users can access. For example, you can specify that some users have only access to certain switches and hosts. However, these users must already be assigned to roles that allow them to see switches and hosts.

Users only assigned to the organization can see just the elements that belong to the organization. If users are assigned to more than one organization, they see all elements that belong to the organizations to which they are assigned. For example, assume you created two organizations: One called OnlyHosts that allowed access to only hosts and another called OnlySwitches that allowed access to only switches. If you assigned a user to OnlyHosts and OnlySwitches, they would have access to hosts and switches because those elements are listed in at least one of the organizations.

Organizations can also contain other organizations. An organization contained within another is called a child. The organization containing a child organization is called a parent. In the following figure, the BostonWebHosts organization contains two child organizations,

128 Managing Security