Manualshelf

HP P9000 Provisioning for Mainframe Systems User Guide (AV400-96369, October 2011)

ManualsBrandsHP ManualsStorageHP XP P9500 Disk Array
11121314151617181920
User groups
User groups and associated built-in roles are defined in the SVP. A user belongs to one or more
user groups. Privileges allowed to a particular user are determined by the user group or groups
to which the user belongs.
The Security Administrator assigns resource groups to user groups. A user group may already be
configured, or a new user group may be required for certain resources.
See HP P9000 Remote Web Console User Guide for more information about how to set up user
groups.
Resource group assignments
All resource groups are normally assigned to the Security Administrator and the Audit Log
Administrator.
Each resource group has a designated Storage Administrator who can access only their assigned
resources and cannot access other resources. (
All resource groups to which all resources in the storage system belong can be assigned to a user
group. Configure this in Remote Web Console by setting All Resource Groups Assigned to Yes.
A user who has All Resource Groups Assigned set to Yes can access all resources in the storage
system. For example, if a user is a Security Administrator (with View & Modify privileges) and a
Storage Administrator (with View and Modify privileges) and All Resource Groups Assigned is
Yes on that user account, the user can edit the storage for all the resources.
If allowing this access becomes a problem with security on the storage system, then register the
following two user accounts in Remote Web Console and use these different accounts for different
purposes.
A user account for a Security Administrator where All Resource Groups Assigned is set to Yes.
A user account for a Storage Administrator who does not have all resource groups assigned
and has only some of the resource groups assigned.
Resource group license requirements
Use of Resource Partition on the P9500 storage system requires the following:
A license key on the Remote Web Console computer for Resource Partition software. For
details about the license key or product installation, see the HP P9000 Remote Web Console
User Guide.
Resource group rules, restrictions, and guidelines
Rules
The maximum number of resource groups that can be created on a storage system is 1023.
A Storage Administrator with the Security Administrator (View & Modify) role can create
resource groups and assign resources to resource groups.
Resources removed from a resource group are returned to meta_resource.
Only a Storage Administrator (View & Modify) can manage the resources in assigned resource
groups.
Restrictions
No new resources can be added to meta_resource.
Resources cannot be deleted from meta_resource.
16 Configuring resource groups