Manualshelf

Brocade Web Tools Administrator's Guide v6.2.0 (53-1001194-01, April 2009)

ManualsBrandsHP ManualsStorageHP DC SAN Backbone Director Switch
41424344454647484950
16 Web Tools Administrator’s Guide
53-1001194-01
Role-Based Access Control
1
Logging out
You can end a Web Tools session either by logging out or by closing Switch Explorer window.
You might be logged out of a session involuntarily, without explicitly clicking the Logout button,
under the following conditions:
A physical fabric administrator changes the contents of your currently selected Admin Domain.
Your currently selected Admin Domain is removed or invalidated.
Your currently selected Admin Domain is removed from your Admin Domain list.
You initiate a firmware download from the Web Tools Switch Administration window. In this
case, you are logged out a few minutes later when the switch reboots.
Your session times out.
Role-Based Access Control
Role-Based Access Control (RBAC) defines the capabilities that a user account has based on the
role the account is assigned. For each role, there is a set of pre-defined permissions on the jobs
and tasks that can be performed on a fabric and its associated fabric elements.
When you log in to a switch, your user account is associated with a pre-defined role. The role that
your account is associated with determines the level of access you have on that switch and in the
fabric. Following is a description of each of the roles:
For information about changing user account roles, see “User-defined accounts” on page 215.
admin You have full access to all of the Web Tools features.
operator You can perform any actions on the switch that do not affect the stored configuration.
securityadmin You can perform actions that do not affect the stored configuration.
switchadmin You can perform all actions on the switch, except the following:
You cannot modify zoning configurations.
You cannot create new accounts.
You cannot view or change account information for any accounts. You can only view
your own account and change your account password.
zoneadmin You can only create and modify zones.
fabricadmin You can do everything the Admin role can do except create new users.
basicswitchadmin You have a subset of Admin level access.
user You have nonadministrative access and can perform tasks such as monitoring system
activity.