Manualshelf

User Guide

ManualsBrandsAlcatel-Lucent ManualsOtherOMNIACCESS SAFEGUARD CONTROLLER
311312313314315316317318319320
OmniAccess SafeGuard OS Administration Guide
320
Chapter 7: Establishing a Security Policy
The procedure for creating a role is:
1 Assigning the Role a Name on page 320
2 Defining the Parent Role on page 320
3 Configuring the Role for User or Malware Policies on page 320
Assigning the Role a Name
Assign the role a name using the Global Configuration command:
user-role name
This statement creates a user role called finance. The policies defined in our earlier
example of
finance_policy are applied to this new role when a user is authenticated.
(SafeGuardOS) (config) # user-role finance
(SafeGuardOS) (user-role) #
Entering a role name places you in user-role mode.
Defining the Parent Role
By default, the authenticated role is the parent role. To change to a new parent, designate
the parent using the following command:
parent role_name
In this example, we are assigning the finance role as a child of the default authenticated
role.
(SafeGuardOS) (config) #user-role finance
(SafeGuardOS) (user-role) #parent authenticated
(SafeGuardOS) (user-role) #
Configuring the Role for User or Malware Policies
Multiple user policies and malware remediation policies can be configured for a role. You
would configure the
user-policy keyword to bind policies to roles. A malware-policy
keyword binds malware remediation policies to the role. Malware remediation policies
are further discussed in Configuring a Malware Remediation Policy on page 364. For either
designation, you must specify a precedence number. Precedence numbers are discussed
in Displaying Policy Configurations on page 327.
Syntax Description name A name that identifies the role.
Syntax Description role_name A name that identifies the role.