Manualshelf

Brocade Web Tools Administrator's Guide - Supporting Fabric OS v7.0.0 (53-1002152-01, March 2012)

ManualsBrandsHP ManualsComputer AccessoriesHP SN8000B 16Gb 32-port Fibre Channel Blade
41424344454647484950
Web Tools Adminstrator’s Guide 13
53-1002152-01
Role-Based Access Control
1
Your currently selected Admin Domain is removed or invalidated.
Your currently selected Admin Domain is removed from your Admin Domain list.
You initiate a firmware download from Web Tool’s Switch Administration window. In this case,
you are logged out a few minutes later when the switch restarts.
Your session times out.
Role-Based Access Control
Role-Based Access Control (RBAC) defines the capabilities that a user account has based on the
assigned role. For each role, there is a set of predefined permissions on the jobs and tasks that can
be performed on a fabric and its associated fabric elements.
When you log in to a switch, your user account is associated with a predefined role. The role
determines the level of access you have on that switch and in the fabric. Table 5 describes these
roles.
For information about creating unique user account roles, refer to “User-defined accounts” on
page 175.
Session management
A Web Tools session is the connection between the Web Tools client and its managed switch. A
session is established when you log in to a switch through Web Tools. When you close Switch
Explorer, Web Tools ends the session.
A session remains in effect until one of the following happens:
You log out
You close the Switch Explorer window
The session ends due to inactivity (time out)
TABLE 5 Predefined Web Tools roles
Role Description
admin You have full access to all of the Web Tools features.
operator You can perform any actions on the switch that do not affect the stored configuration.
securityadmin You can perform actions that do not affect the stored configuration.
switchadmin You can perform all actions on the switch, except the following:
You cannot modify zoning configurations.
You cannot create new accounts.
You cannot view or change account information for any accounts. You can only
view your own account and change your account password.
zoneadmin You can only create and modify zones.
fabricadmin You can do everything the Admin role can do except create new users.
basicswitchadmin You have a subset of Admin level access.
user You have nonadministrative access and can perform tasks such as monitoring
system activity.