Manualshelf

Brocade Fabric Manager Administrator's Guide v6.1.0 (53-10000610-02, June 2008)

ManualsBrandsHP ManualsStorageHP DC04 SAN Director Switch
31323334353637383940
Fabric Manager Administrator’s Guide 7
53-10000610-02
Fabric and switch access
1
For fabrics with a Large polling definition, the Admin Domain data is gathered every 60
minutes.
All switches in the fabric are expected to have the same Admin Domain membership configuration,
although Fabric Manager does not validate this.
Fabric Manager displays an unfiltered view in the Fabric Manager client window. All legacy
(pre-5.2.0) views, dialogs, and functionality continue to work in Admin Domain-unaware mode and
display an unfiltered view at the physical fabric level.
Role-Based Access Control
Role-Based Access Control (RBAC) defines the capabilities that a user account has based on the
role the account has been assigned. For each role, there is a set of pre-defined permissions on the
jobs and tasks that can be performed on a fabric and its associated fabric elements.
When you log in to a switch, your user account is associated with a predefined role. The role that
your account is associated with determines the level of access you have on that switch and in the
fabric. Following is a description of each of the roles:
For information about changing user account roles, see the Web Tools Administrator’s Guide.
You can log in to (authenticate to a fabric) Fabric Manager with any role, as long as you have the
correct credentials and access to AD0 and the physical fabric.
NOTE
Due to FAL API limitations, Fabric Manager does not support Security Operations for the user role
SecurityAdmin.
All Fabric Manager users have full access (create, edit, delete) to all Fabric Manager resources,
such as:
Firmware repository
Call home configurations
Preferences
Change Management profiles and reports
Third-party application launch configurations
When you log in to a switch, the role of the user account with which you log in to the switch
determines your permissions on that switch. If you try to perform an operation for which your role
does not give permission, Fabric Manager displays an informative message.
Admin Administrative use.
FabricAdmin Administrative use excluding user management and Admin Domain
management.
SwitchAdmin Administrative use excluding security, user management, and zoning.
ZoneAdmin Zone management only.
BasicSwichAdmin Administrative use with a subset of Admin level access.
Operator A subset of administrative tasks performed off-hours.
User Nonadministrative use, such as monitoring system activity.
SecurityAdmin Secure fabrics only, administrative use.
NonFCSAdmin Secure fabrics only, a subset of administrator.